Review Pay2X is Another Bitcoin Doubler Scam. Stay Away!

Best Binary Options Brokers 2020:

    Best Options Broker 2020!
    Great Choice For Beginners!
    Free Trading Education!
    Free Demo Account 1000$!
    Get Your Sign-Up Bonus Now!


    Only For Experienced Traders!

Bitcoin Scam Guide – Avoiding Theft and Fraud

By: Ofir Beigel | Last updated: 11/14/19

There are numerous ways to lose your Bitcoins – scams, fraud, and theft are getting more and more common these days. This post will describe how to keep your Bitcoins safe, plus give you some practical tools to use.

Bitcoin Scam Guide Summary

There are numerous types of Bitcoin scams out there. Here’s how to avoid them:

  • Never expose your private key / seed phrase.
  • Use the Bitcoin Scam Test before using any unknown service.
  • Make sure you’re not logging into a phishing site (explained below).
  • Have strong unique passwords to all related accounts.
  • Enable 2FA on related accounts.
  • Use a VPN or secure network to connect to your Bitcoin accounts.

That’s how to avoid scams in a nutshell. If you want a more detailed review about how to identify scams and avoid fraud or theft, keep on reading. Here’s what I’ll cover:

Don’t Like to Read? Watch Our Video Guide Instead

1. The Bitcoin Scam Test

Use this simple 12 question test to evaluate any unknown Bitcoin service or website. Some questions require a specific tool that are located on the right sidebar. If you don’t know the answer to a specific question you can choose to skip it (however the results will be less accurate).

Share the quiz to show your results !

2. Is Bitcoin Safe?

Bitcoin, the currency and the technology behind it, has proved to withstand numerous attacks throughout the years. The weakest link in Bitcoin’s security (as is the case with most other technologies) is usually the people who handle it.

Whenever you hear that Bitcoins were stolen, it wasn’t because there was a problem with Bitcoin’s technology, but because whoever was holding those Bitcoins wasn’t careful enough.

Saying Bitcoin isn’t safe because you hear a lot about stolen Bitcoins is like saying the dollar isn’t safe because you hear that there are a lot of robberies going on.

With great power comes great responsibility, and as long as you follow the steps in this post your Bitcoins will be safe and sound.

Before we get started, here is the most important rule you should remember:

You, and you alone, should know the private key to your Bitcoin wallet. The private key, or seed phrase, is like the combination to a safe. Whoever knows your wallet’s private key can take control of your Bitcoins.

No website or person should ever ask you for your private key – just as no one should ask you for the number combination of your safe. So keep that in mind as a red flag if you ever hear that request.

3. What Should I Do if I Got Scammed?

Here are some of the options at your disposal:

  1. Share your experience in the comments section of this post so others can learn from it.
  2. Report the website or service to the relevant authority.
  3. Report the website on review sites like TrustPilot, BitTrust and BadBitcoin.
  4. Take legal action against the site or service – this might not be worth your time or money (depending on how much money was taken from you).

4. Bitcoin Scams and Fraud Examples

In Scams and frauds, attackers exploit the weakness of the human factor to put their hands on your Bitcoin. Usually this is done by the fraudster claiming to be someone or something he’s not. Here are some common scams and fraud schemes:

Nigerian prince scams

Similar to emails that popped up when the Internet was just gaining mass adoption. The emails were sent by a person claiming to be a Nigerian prince that wants to share his wealth with you. This is a general term for all email scams where people ask you to send them Bitcoin.

The reason they ask for Bitcoin is because:

  1. Bitcoin is somewhat anonymous.
  2. Bitcoin transactions can’t be reversed.

How to avoid – Don’t ever send Bitcoins to someone you don’t know, and when you do send Bitcoins to someone you know, double check that you’re actually speaking to who you think you’re speaking to.

Private Key Scams

This type of scam involves people accessing your wallet’s private key or seed phrase (i.e. the password to your funds). There are several ways this scam can take form:

  1. Persuading the user to send over his private key / seed
  2. Persuading the user to give remote access to his computer and getting the private key through that access (example). This is usually done by pretending to be someone respected in the community / someone that can help you with an issue.
  3. Sending you a private key to use in your own wallet and then stealing the funds from that wallet (example).

How to avoid – You should never share your private key or seed phrase with ANYONE, and you alone should be the one generating it.

Phishing Scams

These scams usually include sending a fake email to the user from a known service (e.g. telling him he needs to log into his account for some strange reason by clicking on an attached link.

When the user clicks the link in the email he’s brought to a phishing site – an identical site to the original, but with a different URL. The sole purpose of this site is logging the user’s username and password. Once the user tries to log in, he basically transmits his sensitive info to the scammer.

How to avoid – Always be suspicious of emails asking you to log into a specific service. Double check the “from” email address and the URL in the browser you’re taken to. Also, it’s best to always access sites directly from the browser and not from links.

Also, make sure the site uses SSL connection – this means you should see a “lock” icon in the beginning of the address bar and that the URL immediately after begins with “https” and not “http”. Most phishing sites don’t have an SSL certificate, although there may be exceptions.

Finally, most services that you sign-up with know your name and use it in their emails. So if you are addressed as “sir” or “dear customer” see that as a warning.

Oh…and never open any email attachments from unknown senders.

Cloud Mining and Ponzi Scams

A Ponzi Scheme is a scam promising high-rates of return with little risk. The Ponzi Scheme pays out the older investors by taking money from new investors. At some point, the Ponzi Scheme operator usually disappears with the investors’ money.

Most Bitcoin Ponzi Schemes today appear in the form of cloud mining sites or coin doublers. These are sites that will promise you high-rates of return on your coins on a daily basis and will disappear with your money, after a while.

How to avoid – Just use the Bitcoin Scam Test on this page before investing in anything.

5. My Personal Scam Story

A little over 2 weeks ago I received the following email:

At first glance, this seems to be a normal email blast sent out by Coindesk looking for advertisers. As you can see from the recipient line it was sent to the admin address of 99Bitcoins ([email protected]).

The thing is, we don’t have an admin address, it was just captured in our inbox since all email directed to are captured.

Here’s what was suspicious about the email:

  • The sender’s name – Shakil Khan. I knew who he was, he was the founder of Coindesk. Why would the founder of a huge publication be sending out cold marketing emails? Don’t they have at least a VP marketing or someone else not so high up?
  • The email was sent from [email protected] – I assume that Coindesk would be sending out emails from their own domain name and not using a general Gmail address.

However, the advertising spots available were actually pretty convincing. First, the email stated specific daily impressions count.

Second, the date at which the banner will be available matched what was advertised at Coindesk. If you were to visit Coindesk at the time the email was sent you would see there was an ad there for Coinsummit that was set to expire on the 6th of July.

Finally, the Facebook URL was also pretty convincing – why would someone be starting a Facebook page that wasn’t their own? I mean if this was a scam this may lower their success rate.

After some back and forth with the (still unknown) scammer I was convinced that this is a good deal and was about to send my Bitcoins until I got the final response:

The grammar mistakes finally aroused my suspicion and I decided to send an email to a verified contact I had in Coindesk. I got the following response:

It seems that this specific email isn’t the only way these scammers try to cheat people out of their money. Some emails even have an actual Coindesk domain “from” address but if you look at the “reply to” address you see it’s the same Gmail address.

The final thing I found out was that the Facebook page mentioned in the original email was not the actual Coindesk FB page. It was a fake page pointing to COLNDESK – but if you don’t write the letter “L” in caps it looks like a capital “I”.

My alertness saved me from losing money in this case. But I think I’ve learned a much more valuable lesson – and that’s how easy it just became for scammers to take your money.

You see, until Bitcoin was introduced, scammers had to overcome complicated barriers when they wanted someone to send them money. They needed to persuade people to wire them the money or send a check.

This would require them to supply an address or a bank account, which could later easily lead to their capture. More than that, these actions require more effort and had a much lower success rate.

But with Bitcoin, cash just became digital, and scam success rates are rising because of it.

I think what I personally take from this story is to make sure I can positively verify the person that I’m sending money to, before actually sending it.

Here’s another example that’s been circling around, this time from the alleged “BitcoinTalk” forum. As you can see below, the same techniques are used here – a Gmail address, stating exact banner sizes, etc.

6. Bitcoin Theft

Unlike fraudsters, thieves steal Bitcoin by circumventing security measures to gain access to their victims’ funds. Online wallets and exchanges are the weakest links in terms of Bitcoin theft. The easiest way to avoid theft from these sites is not to keep any Bitcoins on them.

However, sometimes it’s inevitable to keep funds in an exchange or an online wallet. For example, if you want to trade frequently or if you’re using a certain wallet for online games.

If that’s the case, it’s important to secure your online Bitcoin accounts with a strong enough password.

Generating strong passwords

Here are some general rules for creating a strong password:

  • The more characters the password has the better. Aim for at least 8 characters.
  • Try to create a mix of lower and upper case letters and non traditional characters like exclamation marks, hyphens and so on.
  • Don’t reuse passwords from other accounts.

Of course, the best passwords are the ones that are just a random string of text, numbers, and symbols, but they are also extremely hard to remember. That’s why I strongly recommend you get some sort of password manager to help you generate and keep track of your passwords.

Another way of remembering strong passwords is using numbers instead of certain letters as shown here:

Th!5 i5 a 5tR0ng Pa5sw0rd

These rules should be exercised each time you open a Bitcoin related account, choose a PIN code for your wallet or choose a passphrase for encrypting a file.

For example, if possible, choose a PIN code for your mobile wallet with 8 digits instead of the standard 4.

2 Factor Authentication (2FA)

Another very useful security measure you should use whenever possible is to enable Two-factor authentication for your accounts.

Two-factor authentication, also known as 2FA, is a method of confirming a user’s identity through two separate components. In most cases, it would be something a user has and something a user knows.

A good example for 2fa from everyday life is withdrawing money from an atm; only the correct combination of a bank card (something you have) and a PIN (something you know) allows the transaction to be carried out.

In the case of online accounts, something you know will be the password to the site and the something you have will be a mobile phone that will receive a text message containing a PIN code when you try to log in.

This way, even if a hacker manages to uncover your password he still can’t log in until he physically puts his hand on your mobile device.

HOWEVER, if you use a normal text message, a hacker can still manage to intercept the message as it’s being sent to your phone. That’s why it’s important to use dedicated 2FA apps that are much more suited for this task. Some of the more popular 2FA apps today are Google Authenticator and Authy.

Using trusted Networks

One thing we tend to forget is what network we are using to access online Bitcoin services like exchanges and wallets. Make sure to access sensitive information only on trusted networks that are properly secured.

For example, use your password-protected home or mobile network only and never use a public wi-fi network to access a Bitcoin service. Of course, the password for your router should also follow the rules we just talked about. Public wi-fi networks are extremely vulnerable and hackers can eavesdrop on your session.

If you have to use a public network, make sure to connect through a Virtual Private Network, also known as a VPN. VPNs are programs that hide your online footprint and encrypt your data, making life extremely hard for hackers.

Another very important security measure we already mentioned is to make sure the site you’re connecting to uses a secure SSL connection – this means you should see https:// and not http:// showing up in the address bar.

7. Additional Safety Tips

Whenever you’re sending money to an address, remember that Bitcoin transactions are irreversible. Once the money is sent, there’s no “insurance” and you can’t get it back. For this reason, make sure to always double check that the address you’re sending the money to is correct.

Never type the address in manually since Bitcoin addresses have a lot of characters and you may make a mistake. Either copy and paste the address or use the QR code of the address to scan it. If you send money to the wrong address, there’s no way to retrieve it.

Make sure you trust the person you’re sending money to. If you don’t trust them, you can always use a third party escrow service that you both agree on. One very popular escrow service is Bitrated where you can choose known figures from the Bitcoin community as arbitrators in case of a dispute.

Finally, if you’re conducting small amount transactions, one confirmation may be enough to send over the goods to a counterparty. But if you’re dealing with large amounts, wait for at least six confirmations in order to be sure that the transaction is irreversible.

8. Conclusion

As you can see there are numerous types of Bitcoin scams, and I’ve only covered the main ones. The important thing to remember is this: Bitcoin transactions are irreversible.

So check as much as you need to make sure you’re sending money to someone you trust. Once the money is sent, there’s not much you can do about it.

Have you used the Bitcoin Scam Test? Have you been scammed or fell victim to a fraud? Let me know in the comment section below.

Pay-to-Pubkey Hash

Enjoyed the article? Share:

Pay-to-PubKey-Hash (Pay-to-Public-Key-Hash, P2PKH) is the basic form of making a transaction and is the most common form of transaction on the Bitcoin network. Transactions that pay to a Bitcoin address contain P2PKH scripts that are resolved by sending the public key and a digital signature created by the corresponding private key.

The ScriptPubKey and ScriptSig for a transaction is shown below:


Pay-to-PubKey-Hash Review [ edit ]

Two types of payment are referred as P2PK (pay to public key) and P2PKH (pay to public key hash).

Satoshi later decided to use P2PKH instead of P2PK for two reasons:

  • Elliptic Curve Cryptography (the cryptography used by your public key and private key) is vulnerable to a modified Shor’s algorithm for solving the discrete logarithm problem on elliptic curves. In plain English, it means that in the future a quantum computer might be able to retrieve a private key from a public key. By publishing the public key only when the coins are spent (and assuming that addresses are not reused), such an attack is rendered ineffective.
  • With the hash being smaller (20 bytes) it is easier to print and easier to embed into small storage mediums like QR codes.

A Bitcoin address is only a hash, so the sender can’t provide a full public key in scriptPubKey. When redeeming coins that have been sent to a Bitcoin address, the recipient provides both the signature and the public key. The script verifies that the provided public key does hash to the hash in scriptPubKey, and then it also checks the signature against the public key.



Stack Script Description
Empty. scriptSig and scriptPubKey are combined.


Constants are added to the stack.


Top stack item is duplicated.
Top stack item is hashed.
OP_CHECKSIG Equality is checked between the top two stack items.
true Empty. Signature is checked for top two stack items.

Pay-to-PublicKey Hash Example [ edit ]

The figures below help illustrate how these features are used by showing the workflow Alice uses to send Bob a transaction and which Bob later uses to spend that transaction. Both Alice and Bob will use the most common form of the standard Pay-To-Public-Key-Hash (P2PKH) transaction type. P2PKH lets Alice spend satoshis to a typical Bitcoin address, and then lets Bob further spend those satoshis using a simple cryptographic key pair.

Bob must first generate a private/public key pair before Alice can create the first transaction. Bitcoin uses the Elliptic Curve Digital Signature Algorithm (ECDSA) with the secp256k1 curve; secp256k1 private keys are 256 bits of random data. A copy of that data is deterministically transformed into an secp256k1 public key. Because the transformation can be reliably repeated later, the public key does not need to be stored.

The public key (pubkey) is then cryptographically hashed. This pubkey hash can also be reliably repeated later, so it also does not need to be stored. The hash shortens and obfuscates the public key, making manual transcription easier and providing security against unanticipated problems which might allow reconstruction of private keys from public key data at some later point.

Bob provides the pubkey hash to Alice. Pubkey hashes are almost always sent encoded as Bitcoin addresses, which are base58-encoded strings containing an address version number, the hash, and an error-detection checksum to catch typos. The address can be transmitted through any medium, including one-way mediums which prevent the spender from communicating with the receiver, and it can be further encoded into another format, such as a QR code containing a bitcoin: URI. Once Alice has the address and decodes it back into a standard hash, she can create the first transaction. She creates a standard P2PKH transaction output containing instructions which allow anyone to spend that output if they can prove they control the private key corresponding to Bob’s hashed public key. These instructions are called the pubkey script or scriptPubKey.

Alice broadcasts the transaction and it is added to the block chain. The network categorizes it as an Unspent Transaction Output (UTXO), and Bob’s wallet software displays it as a spendable balance. When, some time later, Bob decides to spend the UTXO, he must create an input which references the transaction Alice created by its hash, called a Transaction Identifier (txid), and the specific output she used by its index number (output index). He must then create a signature script—a collection of data parameters which satisfy the conditions Alice placed in the previous output’s pubkey script. Signature scripts are also called scriptSigs. Review: Pay2X is Another Bitcoin Doubler Scam. Stay Away!

*Buying in game gear locked behind skill (raid gear) = pay 2 win.
*Buying in game currency that lets you buy items (auction house or vendor) = pay 2 win.
Both of these lets you skip having to play the game to acquire items. Which ultimately is buying time but also skips the skill part of the game.

*Buying an xp boost to access content faster to earn in game gear faster(thus you still having to do the work using your skill) = pay 2 accelerate.
*Buying inventory slots so you dont have to return to town as many times thus saving in travel time (giving you more play time to use your skills to aquire loot) = pay 2 accelerate.

*Buying time vs buying power.

Buying time means you still have to invest time and use skill to get where you need to go. That is not pay 2 win. That is a convenience.

Buying power lets you skip the skill part and all of the time investment. Thats what pay 2 win is. If you get 15% more rep gain or honor gain or xp gain, that is just a time convenience.

Everyone has a different version of what pay 2 win is and obviously there is many more examples. But before you shout P2W because your favorite streamer is, at least get informed what it truly is as defined by the majority audience. I imagine pay 2 win has an evolving meaning as games evolve as do features.

If you truly believe something they said is pay 2 win and you arent just trolling to make the game look worse than it is, then make sure you follow it up with a reason why you think its unfair. Dont just say it is and then move on. Remember your emissarys can submit feedback and get it changed with enough convincing. But also remember there is actual pay 2 win elements in games, and conveniences arent that.

pay 2 accelerate= pay to be above everyone else = pay to win?

I understand wanting to “level” past people, but paying for it is ♥♥♥♥♥♥♥♥ and is p2w. FFXIV had the right idea of it whereby, you got a ring that gave 30% exp (which everyone could get for free) upon reaching level 17 and doing the, Hall of the Novice, tasks. This is laughable.

pay 2 accelerate= pay to be above everyone else = pay to win?

I understand wanting to “level” past people, but paying for it is ♥♥♥♥♥♥♥♥ and is p2w. FFXIV had the right idea of it whereby, you got a ring that gave 30% exp (which everyone could get for free) upon reaching level 17 and doing the, Hall of the Novice, tasks. This is laughable.

Unfortunately, Pay-to-win, Pay-to-accelerate, and Pay-For-Convneience, are all under the same umbrella.

They just have varying levels of offense/impact/community acceptance.

pay 2 accelerate= pay to be above everyone else = pay to win?

I understand wanting to “level” past people, but paying for it is ♥♥♥♥♥♥♥♥ and is p2w. FFXIV had the right idea of it whereby, you got a ring that gave 30% exp (which everyone could get for free) upon reaching level 17 and doing the, Hall of the Novice, tasks. This is laughable.

so following your logic, how come we tolerate the headstart? those that get it are actually paying to get a HEADSTART>be above others. so why is this fine, but an xp boost P2W?

What is getting an extra dungeon raid per day considered?

so far and according to what we know that’s not a thing. they clearly stated such an item giving a+1 entry won’t exist. so.

Unfortunately, Pay-to-win, Pay-to-accelerate, and Pay-For-Convneience, are all under the same umbrella.

They just have varying levels of offense/impact/community acceptance.

won’t disagree with you here, still, at the end of the day, even if the guy with the wallet goes “faster than me” i can still get there by playing the game, what’s the problem with that?
as long as you aren’t FORCED to pay to get there yourself, if anything at least you are playing the damn game.

i’d prefer pay to accelerate/for convenience over a P2W one anyday.
not against you just quoting you here as it suited my point.

“Pay 2 Accelerate and Pay 2 Win are two different things.”

I understand wanting to “level” past people, but paying for it is ♥♥♥♥♥♥♥♥ and is p2w. FFXIV had the right idea of it whereby, you got a ring that gave 30% exp (which everyone could get for free) upon reaching level 17 and doing the, Hall of the Novice, tasks. This is laughable.

They also sell insta-level 60 in the shop soo. just sayin’

*Buying time vs buying power.

Buying time means you still have to invest time and use skill to get where you need to go. That is not pay 2 win. That is a convenience.

Buying power lets you skip the skill part and all of the time investment. Thats what pay 2 win is. If you get 15% more rep gain or honor gain or xp gain, that is just a time convenience.

I fully agree. I’m all for having a premium standard for those who all pay the same fee and get the same bonuses. It’s better because my time is valuable and everyone has the choice to pay the flat fee or not. There is no way to keep pumping money in and get more bonuses, that levels the playing field while also making it more convenient for the players. Yet, there is a free option for those who want it.

For those who play very frequently, the benefits go beyond in that the development team has ongoing profit to allocate development funds from and the game has a better chance of being well tended to in the future. Plus, if I get 30-60 hours of enjoyment per month out of a $15 subscription, I should be more than happy.

Pay 2 Accelerate . no one want it here .

that is a buy to play + premium + “cosmetic” cash shop game .

statement from neowiz was.
we do this game from free to play to buy to play + premium + cosmetic cash shop that we do not see any from this free to play muck.

Pay 2 Accelerate is free to play muck.

All the P2 whatever leads to drama and issues, and is the biggest mistake most devs make in MMO’s.

Paying to get ahead creates a major issue for new players and loyal player’s that have been there from day one. While these player’s have put in a lot of time, effort and even paid sub’s other’s just continue to press the skip button with money in the cs. It doesn’t even matter or a question of if it is fair.

If the devs have done their job right, then there should be no reason whatsoever in a B2P game to have need for these items. Guilds and other players will help others and this is what creates a solid community in an MMO. If you have a solid community, they will continue support the game for a long time.

Once you start adding these items to the cs, much of the player base starts falling far behind, it creates a lot of imbalance to where if you don’t pay for these advances it starts to intefere with whether you’re a viable player in a guild or group.

This then leads to all the drama, which then leads to people leaving and thus the devs deciding it’s time to go F2P.

If you’re going to be a B2P game then say that is what you are, if you’re a B2P game with sub, then say that’s what you are.

Best Binary Options Brokers 2020:

    Best Options Broker 2020!
    Great Choice For Beginners!
    Free Trading Education!
    Free Demo Account 1000$!
    Get Your Sign-Up Bonus Now!


    Only For Experienced Traders!

If you’re going to be B2P game, with optional sub and a cs, then you should have said it from the start because as I said people are sick of this and it’s obvious the devs know exactly what player’s mean when they ask.

I’ve read the interviews with the devs so they aren’t clueless on this issue.

i wonder where people make up these things.

Never heard of Pay to accelerate. anyways

For me P2W in overall is Paying to advance into the game. This is my logic

Hard items that are suppose to be hard to get is hard for a reason. But people don’t have all day to get it so thus they throw money which thus now you are paying to avoid the “hard” part of getting these items.

This only include Enhancement or Perk that increase stats ratio on avatar or gears as they play an important role of the game, actually its pretty much 90% of the game and the other 10% is strategy/ Communication.

What i mean by Enchancement items in depth is.

Paying real money for tools that Increase Enchantment, Increase success rate, and avoid enchant failure. Are pay to win item because normally enhancement items are hard to come by so people bypass this buy spending money to get them faster which in theory by paying for enhancement item to get better gears = better stats comes down to P2W.

Paying real money for perk such as stats boost.

Any sort of item that increase the avatar to become stronger by using real money is P2W.

Now people say well yeah i use money to enhance my gears but i still suck. P2W is only reflected toward using real money to skip some hard mechanic of the game in order to succeed. It does not reflect whether you are good or you just suck.The reason your spending money is to win.

It’s no one fault that you still suck though your spending money to get beefy.

as far as exp boost, free travel, faster mounts these items are not P2W as they really do not play an important role as non of these reflect towards making your character beefy for a raid or boss fight.

So to summarize this. Anything that you pay for with real money just to increase your survivability against raids or bosses you’re technically a P2W because your in theory PAYING TO WIN against a raid or boss. But how you effectively do it doesn’t matter.

People need stop making excused for themselves when they clearly are using real money to enhance themselves and telling people no i am just paying to catch up.

Best Binary Options Brokers 2020:

    Best Options Broker 2020!
    Great Choice For Beginners!
    Free Trading Education!
    Free Demo Account 1000$!
    Get Your Sign-Up Bonus Now!


    Only For Experienced Traders!

Like this post? Please share to your friends:
Binary Options Trading Library
Leave a Reply

;-) :| :x :twisted: :smile: :shock: :sad: :roll: :razz: :oops: :o :mrgreen: :lol: :idea: :grin: :evil: :cry: :cool: :arrow: :???: :?: :!: