Scammers have been targeting XRP holders with fraudulent messages that mimic official XRP Ledger verification alerts, leading to at least one confirmed loss of 14,646 XRP (valued at approximately $16,800 at the time of the incident). The attack was brought to light by blockchain analyst Xaif Crypto, who detailed the event on social media on June 22, 2026.
The malicious operation involved a deceptive payment request that appeared to be a legitimate system verification. The victim’s transaction included a memo field pre-configured by the attackers with the phrase ‘Safe XRPL verify message’, which created a false sense of security. The scammers lured the user with a promise of 10% monthly rewards, exploiting the victim’s trust in what they believed was a routine authentication protocol.
Once the funds were transferred, they became irretrievable due to the irreversible nature of transactions on decentralized ledgers. Security researchers pointed out that the destination wallet had already been flagged as fraudulent on major block explorers, yet the attack still succeeded. This incident underscores the dangers of social engineering in crypto, where attackers prey on users’ unfamiliarity with transaction details like memos.
Wallet developers and security analysts are urging XRP holders to ignore any unsolicited payment requests, especially those promising rewards or requesting fund transfers for verification. Users are advised to regularly check the reputation of recipient addresses on public block explorers before making any transactions.
