Why Do Recovery Scams Often Impersonate Law Enforcement or Regulators?
Someone who already lost money to a crypto scam is often targeted a second time, this time by a person claiming to be exactly the kind of official who should be helping recover it.
The short answer
Recovery scams impersonate law enforcement or regulators because that identity carries automatic authority and urgency, making victims less likely to question instructions or verify who they’re actually talking to. A badge, case number, or agency name is simply a costume that makes a follow-up scam easier to pull off on someone already anxious about a prior loss.
Why this tactic works so well
People who’ve already lost money to a scam are often frightened, embarrassed, and eager for a resolution, which makes them a receptive audience for anyone who claims to have one. A scammer posing as an investigator or regulator taps into an existing assumption that official-sounding contact means legitimate help is on the way. The fear of consequences for not cooperating, combined with hope that the money might actually come back, tends to override the skepticism a person might otherwise apply to an unsolicited message.
Common patterns in these scams
- Fake case numbers and official-looking documents. These are designed to look like paperwork from a real investigation, even though no legitimate agency issues recovery through unsolicited contact.
- Urgency and secrecy demands. Victims are frequently told not to discuss the “investigation” with anyone, which isolates them from advice that might expose the scam.
- Upfront fees framed as legal or processing costs. A supposed recovery requires the victim to send more crypto or cash before funds can be released, which is itself a major warning sign.
- Follow-up targeting. Because scam victim lists sometimes circulate among fraud networks, the same person can be approached repeatedly with different fake recovery pitches.
How this connects to the broader scam landscape
Recovery scams often follow an earlier loss connected to a giveaway-style scam or a romance-driven request for money, and the scammers running the follow-up pitch are frequently unrelated to whoever caused the original loss. Older adults are disproportionately targeted at this stage, since families trying to recognize the signs of elder targeting often find that a second, “official-sounding” contact is what finally prompts a large second payment. Because crypto transactions are irreversible once confirmed, there’s no institution equivalent to a bank that can reverse a fraudulent transfer, which is exactly the vulnerability these follow-up scams exploit.
What to weigh
- Independent verification. A real law enforcement agency or regulator does not solicit payment to “release” recovered funds, and any legitimate contact can be verified by calling the agency directly through a publicly listed number, not one provided by the caller.
- No such thing as guaranteed recovery. Crypto sent to a scammer is very rarely recoverable once transactions confirm, and anyone promising otherwise for a fee should be treated with heavy suspicion.
- Reporting matters even without recovery. Filing a report with the relevant agency helps build a record, even when it doesn’t return the lost funds.
- No FDIC or SIPC coverage. Crypto losses from scams aren’t protected the way insured bank or brokerage losses often are, which is part of why prevention matters more than after-the-fact recovery.
The takeaway
The authority a badge or agency name implies is precisely what recovery scammers are borrowing to bypass a victim’s normal skepticism. Verifying any contact independently, and treating upfront payment requests as a hard stop, remains the most reliable defense against this second wave of targeting.