Always check the URL. Scammers use mirror sites with look-alike domains (e.g., lledger.com instead of ledger.com).
For large amounts, never keep funds on an exchange. Use a hardware wallet for long-term holding.
Never type your 24-word recovery phrase on any website. Real support will never ask for it.
Before interacting with a new dApp, use our index to check its trust score and community reports.