Ripple CTO David Schwartz Just Warned of AI-Cloned Executives

Press Room

3 hours ago

Author

Ahmed Barakat

Author

Ahmed Barakat

Part of the Team Since

Aug 2025

About Author

Ahmed Balaha is a journalist and copywriter based in Georgia with a growing focus on blockchain technology, DeFi, AI, privacy, digital assets, and fintech innovation.

Last updated:

May 14, 2026

XRP cryptocurrency coin surrounded by digital phishing hooks and cybersecurity threats in dark tech environment

Ripple co-founder and CTO David Schwartz has issued an urgent public warning about what he described as a ‘huge escalation lately in airdrop and giveaway scams targeting XRPL users,’ flagging a coordinated wave of XRP scam news campaigns that have grown sharply more sophisticated through AI-generated impersonation and wallet drainer technology.

The warning, posted to his 700,000-plus followers on X, arrives as XRP commands elevated institutional attention and retail volume, precisely the conditions that make its holder base a high-value phishing target. Bearish signal for ecosystem trust.

SCAM ALERT: There has been a huge escalation lately in airdrop and giveaway scams targetting XRPL users lately. Any such posts you see are likely scams.

Anyone claiming to be me on Instagram, Telegram, or almost anywhere else is likely a scammer.

Stay safe XRP fam.

— David ‘JoelKatz’ Schwartz (@JoelKatz) May 14, 2026

Discover: The best pre-launch token sales

Ripple News: How the Attacks Work, Fake Airdrops, Wallet Drainers, and AI-Cloned Executives

The mechanism here is worth understanding precisely. The dominant attack vector is the fake airdrop: users are directed to a fraudulent promotional site promising free XRP tokens, where connecting a non-custodial wallet triggers a malicious script, a wallet drainer, that executes a single authorized transaction to empty holdings before the user realizes what happened.

The authorization step is the trap; once signed, the transaction is irreversible on-chain.

Giveaway scams operate through a simpler but equally effective social engineering play. Fraudsters promise to return twice any amount of XRP sent to a scammer-controlled address, packaging the pitch around fabricated Ripple announcements or milestone celebrations.

The delivery infrastructure has matured significantly in 2026. Attackers are deploying AI-generated deepfake videos on TikTok and YouTube that clone Schwartz’s likeness and voice with enough fidelity to fool retail holders.

In a separate and notably sophisticated attack vector, Schwartz flagged a phishing campaign that injected fake emails into Robinhood’s infrastructure, exploiting Gmail’s dot-trick for account creation and embedding malicious HTML payloads in device names, with messages that passed SPF, DKIM, and DMARC authentication checks, making them appear as legitimate Robinhood correspondence.

Fake accounts impersonating Schwartz and Ripple CEO Brad Garlinghouse have proliferated on Instagram and Telegram, with Ripple reporting over 50 such accounts on both platforms in Q1 2026 alone.

Schwartz warned explicitly: ‘Anyone claiming to be me on Instagram, Telegram, or almost anywhere else is likely a scammer.’

Discover: The best pre-launch token sales