Gramium.io
Risk

How to avoid common TON scams

Learn the practical warning signs around fake jettons, spoofed Telegram channels, malicious mini apps, high slippage, and wallet approvals.

11 min read ยท Updated 2026-06-05

Key takeaways

  • Most avoidable losses start with a rushed click, copied ticker, spoofed channel, or unchecked contract.
  • A real project can still have risky liquidity, concentrated holders, or poor route quality.
  • No dashboard can promise absolute safety, but good warnings can slow down bad decisions.

Fake tokens and copied tickers

A scam token can copy the name, symbol, and logo of a real asset. On TON, as on other networks, the contract identity matters more than the display name. Always compare the contract address with official sources and check whether major wallets or explorers label it consistently.

Be especially careful when a token is promoted in a chat before it appears in trusted market tools. Early discovery can be useful, but it is also where impersonation is easiest.

Spoofed Telegram channels and mini apps

Telegram makes distribution powerful, but that same speed can help attackers. Spoofed channels, fake support accounts, and malicious mini apps may pressure users to connect wallets or claim rewards quickly.

A good habit is to navigate from official websites and verified project channels instead of clicking links in forwarded messages. When a claim or trade is urgent, the risk usually deserves extra scrutiny.

Approvals, signatures, and transaction prompts

Read wallet prompts carefully. A harmless-looking button can request a transfer, a token approval, or a signature that changes permissions. If the prompt is unclear, reject it and investigate first.

The Gramium MVP does not request signatures. Future versions should keep read-only views separate from actions and explain what the wallet is being asked to approve.

Liquidity traps and high slippage

Some tokens are easy to buy but hard to sell because liquidity is thin, removed, or controlled by a small group. High slippage settings can hide the problem until execution is poor. Look for pool age, locked or stable liquidity, holder concentration, and failed sell reports.

No single signal proves safety. The practical goal is to combine multiple weak signals into a clearer risk picture before acting.

FAQ

Can Gramium guarantee a token is safe?

No. Gramium can provide context and warnings, but it cannot guarantee safety or prevent every malicious contract or market event.

What is the strongest anti-scam habit?

Verify contract identity from multiple official sources before connecting, swapping, or approving anything.

Are Telegram mini apps risky by default?

No. Many are legitimate, but users should still check origin, permissions, wallet prompts, and whether the app is linked from official channels.