Discord Scam Pattern UK

Spot the three dominant Discord scam patterns in 2026 — fake Nitro free-trial links, crypto / NFT airdrop server DMs, and fake Trust-and-Safety verification — with the verification rules tuned to the platform.

Last reviewed: 13 May 2026 · ScamSupport research

Why Discord is a high-velocity scam venue

Discord’s user base skews young (16-30), is heavily tied to gaming and crypto / NFT communities, and operates with light moderation per server. The combination — impressionable demographics, a high-value linked asset class (game accounts with cosmetics worth real money, crypto wallets, NFT collections), and DM permission that’s on by default for most users — makes Discord a prime venue for low-effort, high-volume scam operations.

Most Discord scams aren’t about extracting money directly. They’re about taking over the victim’s Discord account (which unlocks gaming accounts and connected wallets), or about routing the victim to phishing pages that harvest credentials for higher-value services. Report Fraud reporting on Discord-related fraud has grown steadily since 2022; Discord’s own Trust & Safety transparency reports show millions of scam accounts banned each quarter.

Three Discord scam variants currently in circulation

Variant 1 — Free Nitro / gift link DM

How it presents: A DM from a real (compromised) friend’s account, or from a random Discord user with a generic name. The message says: “Free Nitro for 3 months! Got an extra invite, claim it here: [link]”. The link looks like a Discord URL but uses a typosquatted domain: discordnitro-claim[dot]com, steam-discord-nitro[dot]net, discord-gift-uk[dot]xyz.

Red flags:

  • Real Discord Nitro gifts come from Discord itself. Real gifts appear as a system-generated message inside Discord with a “Claim” button that stays inside the Discord app. Never via a stand-alone external link.
  • The link domain is not discord.com or discord.gg. Real Discord domains are discord.com (web app), discord.gg (invite links), discord.media (CDN). Any other domain is fake.
  • The DM came from a friend who wouldn’t normally send this. The friend’s account is compromised. They’re not deliberately scamming you; they fell for the same scam and the scammer is now using their account to DM everyone in their friend list.
  • The destination page asks for your Discord login. Once you enter username + password + 2FA code, the scammer immediately logs in to your account, kicks you out, and uses your account to DM all your friends. Your account is the value.
  • After takeover, linked accounts are at risk. If you used Discord login to connect to Steam, EA, Twitch, Roblox, or any crypto wallet, those credentials are now exposed.

Variant 2 — Crypto / NFT airdrop server DM

How it presents: A DM from an admin / moderator of a crypto or NFT Discord server you’ve joined. “Congrats! You’ve been selected for our airdrop. Connect your wallet at [link] to claim your tokens before the snapshot.” Or: “Whitelist closes in 30 minutes — click here to verify your spot.” The link routes to a fake wallet-connection page that drains the connected wallet on signature.

Red flags:

  • Real crypto / NFT project staff don’t DM unsolicited. Most legitimate projects explicitly disable DMs for staff and post in the server: “We will NEVER DM you first.” If you receive a DM offering airdrop / whitelist / mint access, the DM itself is the scam signal.
  • Real airdrops are claimed via the project’s official website, announced in the server announcement channel. Verify against the pinned announcement, not the DM.
  • The wallet-connection page asks you to sign a transaction. Drainer contracts request approval to spend all tokens / NFTs. The signature is the wallet drain. Once approved, the wallet contents can be transferred immediately.
  • Urgency “snapshot in 30 minutes” framing. Manufactured scarcity to prevent verification. Real snapshots are announced days in advance.
  • The lookalike domain. If you do connect on a fake page, the URL bar shows a domain that’s almost-but-not-quite the project’s real domain. Always type the project’s real domain yourself, or use a bookmark from a known-good visit.
  • Defence: enable wallet transaction-preview tools. Tools like Wallet Guard, ScamSniffer, or Pocket Universe display the actual contract being signed in human-readable form. They catch approval-to-drain transactions before signing.

Variant 3 — Fake Discord Trust & Safety verification

How it presents: A DM from an account with a Discord-themed username (“Discord T&S”, “Discord Verification”, “Discord-Mod”) claiming the recipient’s account has been reported and will be banned unless they verify identity. The link routes to a fake Discord login page that captures credentials and 2FA code.

Red flags:

  • Discord’s Trust & Safety team does not DM users about account actions. Real Discord moderation actions appear as in-app notifications, sent from system rather than from a user account. T&S communications come via email from support@discord.com, never via Discord DM.
  • The verification link is on a fake domain. Real Discord login is at discord.com only. discord-verify[dot]com, discordapp-support[dot]net, discordsafety[dot]xyz are all typosquats.
  • Threat of immediate ban or account deletion. Real Discord moderation typically issues warnings or temporary suspensions, not immediate permanent deletion via DM.
  • Asking for 2FA backup codes. Real Discord does not ask for backup codes via DM. Backup codes are for YOUR use to recover access — never shared.
  • Account-takeover consequence: compromised Discord accounts are used to (a) DM your contacts with further Variant 1 / Variant 2 scams, (b) join your linked gaming-account communities, (c) potentially access any connected wallet permissions.

The verification rules that defeat Discord scams

  1. Discord never sends gift links via external URLs. Real Nitro gifts appear as in-app system messages with an in-app claim button. External links are fake.
  2. Crypto / NFT project staff don’t DM first. Treat any unsolicited DM about airdrop / whitelist / mint / snapshot as a scam by default. Verify against the project’s pinned announcements in the server.
  3. Discord Trust & Safety doesn’t DM about account actions. Real moderation messages come via in-app notification (from `system`) or email from support@discord.com.
  4. Real Discord login is at discord.com only. Bookmark it. Use the bookmark or type the URL yourself when prompted to log in. Never click a Discord-login link from a DM or external email.
  5. Enable 2FA via authenticator app (not SMS). Settings > My Account > Two-Factor Authentication. Use Authy, Google Authenticator, or 1Password — not SMS, which is interceptable.
  6. Disable DMs from server members by default. Settings > Privacy & Safety > “Allow direct messages from server members” OFF. You can selectively enable DMs per server for trusted communities. This single setting eliminates the majority of scam DM exposure.
  7. For crypto wallets: install a transaction-preview tool (Wallet Guard, ScamSniffer, Pocket Universe). These display in plain English what a transaction is actually doing before you sign — catching drain approvals.

If your Discord account has been hacked

  1. Try to log in immediately at discord.com. If you still have access, change your password right away (Settings > My Account > Edit). Sign out all other sessions (Settings > Devices).
  2. If you’re locked out: use the password recovery flow at discord.com. If the linked email has also been changed, contact Discord Support at dis.gd/contact. Recovery typically takes 1-7 days depending on case complexity.
  3. If the linked email is compromised too: regain access to your email first (via your email provider’s recovery flow), then return to Discord recovery. The email is the recovery anchor.
  4. Warn your contacts. Post on other platforms you have access to (Twitter, Instagram, Steam) that your Discord is compromised and to ignore DMs from it. The compromised account will be DM’ing your friends with further scam links.
  5. Check linked accounts. Steam, Twitch, EA, Roblox, Spotify, Reddit, GitHub — any service you connected via Discord login. Change passwords on those services + enable 2FA via authenticator app.
  6. If you have a crypto wallet connected via Discord: immediately transfer assets to a fresh wallet. Revoke any active token approvals at revoke.cash. If a drainer approval was already signed, every minute matters.
  7. Report the takeover at dis.gd/report — helps Discord’s Trust & Safety identify the attacker’s pattern and prevent further compromises.

If you’ve lost money or assets

  1. Crypto wallet drained: recovery is very difficult once funds move through tumblers or off-ramp exchanges. Report immediately to Report Fraud on 0300 123 2040. Specialist tracing firms exist (CipherTrace, Chainalysis Reactor partners, AnchainAI) but cost is high relative to typical losses.
  2. Bank transfer for “NFT” / “crypto” purchase: use the PSR Claim Wizard. APP fraud protection covers crypto-purchase scams.
  3. Card payment for fake Nitro / fake premium / fake whitelist fee: use the Chargeback & Section 75 Generator.
  4. Gaming-account theft (Steam, EA, Roblox): contact each platform’s account-recovery flow directly. Steam: help.steampowered.com. Roblox: roblox.com/support. EA: help.ea.com. Most platforms can restore access if reported within hours.
  5. Report to Report Fraud at reportfraud.police.uk regardless of recovery outcome.

Related scam guides

Use the Scam Message Scanner →