# Fake Decentralized Applications

Scammers create fake applications that look like legitimate services. Their main trick is showing a well-known website address in the **TON Connect** window while actually operating from a different domain.

### 🥷 How does it work?

Users see that they're connecting to an app at **example.app**, but the connection is actually going to **fake-example.app**—scammers use this domain spoofing to steal users' funds.

### 🕵️ How to stay protected?

**MyTonWallet** automatically checks whether the address user sees matches where the connection is actually going. If something's wrong—a warning will pop up in **TON Connect**.

### 👀 What to do when a warning appears?

If you see a warning about a suspicious decentralized application, make sure you're actually working with the original dapp.

If you have any doubts or discover it's a fake—cancel the current action.

{% hint style="danger" %}
**Never share your seed phrase with anyone.**
{% endhint %}

{% hint style="warning" %}
If an offer sounds too good to be true, it probably is. Stick to basic [**security rules**](/intro/scams/how-to-protect-yourself-from-fraud.md) to protect your funds.
{% endhint %}


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://help.mytonwallet.io/intro/scams/fake-decentralized-applications.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.