Hi everyone, I recently received a message from someone claiming to be Lido support. They shared a link to a website with a suspicious domain and said it’s an official DApp for help. Can anyone confirm if this is legitimate? I’m worried it might be a scam.
They tried to direct me to this website and asked me to either connect my wallet or enter my private key or 24-word seed phrase!
website: decentralizefix-chain . pages.dev
1 Like
It’s a scam! don’t trust it
2 Likes
Agreed that this is an issue. While discord is great for realtime feedback it does present an attack vector for the more nefarious types; preying on those needing support. While CSM grows, I imagine this problem will magnify. Perhaps support tickets/links should be directed to the forums?
1 Like
I agree that security is an important concern, but I’m not advocating for using one channel more than another.
In practice, I actually feel more exposed to scams on the forum than on Discord. On Discord, the Lido team does a very good job of quickly detecting and removing scam or impersonation accounts.
On the forum, I’ve repeatedly received private messages from fake “Lido support” accounts, often with very sophisticated social engineering — attempting to redirect users to phishing websites or malicious browser extensions. In many cases, I’ve had to manually report these accounts myself.
So from my personal experience, the risk profile is not one-sided. Each platform has different attack vectors, and mitigation quality matters as much as the medium itself.
That said, I do agree that as CSM grows, having clear, official, and well-signposted support paths (regardless of platform) will become increasingly important.
Thanks for raising this. Situations like this can easily cause confusion.
For me, the safest rule of thumb is simple:
If a DApp, link, or support flow is not explicitly documented on the official Lido website, it should not be trusted — regardless of where it is shared.