All Collections
User Safety
How can I keep my NFTs safe?
How can I keep my NFTs safe?
This user safety article from Jungle outlines the best practice for keeping your assets safe and secure in the NFT and Web3 space.
Mike avatar
Written by Mike
Updated yesterday

  • `Make it official

    If you have a query, you should go through official channels, like Jungle’s customer support. There is a fantastic community of NFT creators and traders out there, but just be wary of asking for help on open social media platforms or channels, as it can leave you open to being scammed.

  • Don’t share your seed phrase. EVER

    We mean it. Hence the SHOUTY CAPS. There is no scenario in which anyone, Jungle support included, should ever ask you for your secret recovery phrase. If anyone asks for this, be very suspicious.

  • When it comes to wallet providers, go straight to the source

    If you need to download a wallet browser extension, get the link from the wallet provider’s direct website, and check the reviews and the developer to ensure they are legit and not an imposter. You can even contact the wallet provider to make sure - better safe than sorry.

  • Don’t click on random links

    Be cautious about social media or Discord channels, and don’t click on any ads, images, or links from people you don’t know.

  • Avoid reusing passwords

    No, really. It makes your accounts more vulnerable than a man who falls asleep at a bachelor party near a selection of permanent markers and phallic stencils. Instead, use a password manager or generator, enable two-factor authentication (you can use Google Authenticator, for example), and avoid SMS 2FA (where an OTP is sent to another device) if you can. If you want to go one step further, you can also get a hardware-based 2FA device.

  • Stranger danger

    Has a stranger sent you a random file or QR code? Don’t open it. But it just appears to be a friendly-looking PDF. Lies! Well, it might not be all lies, but it pays to be suspicious. Be particularly careful with email too:

    • Look out for phishing emails from addresses pretending to be Jungle by using a domain that’s only slightly different from the official email. For the record - our official domain is If the domain differs, it’s not from us (pay close attention to this as scammers often try to switch a few letters to trick unsuspecting individuals into thinking they’re a legitimate sender).

    • We wouldn’t ask you to download anything from a Jungle email or click on a website URL that isn’t associated with the Jungle domain.

    • NEVER share your passwords or secret wallet phrases. Jungle will never ever ever ever ask you for any secret recovery phrases or passwords.

    • NEVER sign a wallet transaction that has originated from an email.

  • Does it seem too good to be true?

    The old adage stands, sadly. If it seems too good to be true, it probably is. Many scammers are trying to take advantage of new NFT creators and traders. It’s a big part of our origin story - we were so tired of seeing people in the NFT space get ripped off with fake NFTs. As much as we pride ourselves on our built-in safety features that stop scammers from uploading fakes at the source, there are plenty of other ways that people can be dishonest, so it’s always good practice to do your due diligence and research the sellers, collections, and NFT purchase history before you purchase an NFT, even on Jungle.

Did this answer your question?