Casa, a leading Bitcoin security firm, has unveiled a comprehensive suite of four innovative features focused on mitigating social engineering threats, a notable attack vector responsible for a significant portion of cryptocurrency theft in 2025. These features are currently available for Casa customers, as the FBI reported a staggering 22% year-over-year increase in crypto fraud losses, exceeding $11 billion last year.
Social engineering, wherein scammers manipulatete victims into transferring funds or granting access to their wallets, has now far surpassed other forms of crypto theft. For every reported physical attack on a cryptocurrency holder in 2025, there were more than 2,000 phishing attacks recorded with the FBI.
Nick Neuman, the CEO of Casa, articulated the firm’s stance on such attacks as a direct affront to its clients. “Social engineering is the lowest of the low,” Neuman stated. “Individuals are attempting to deceive others into relinquishing their life savings. We will not tolerate this.”
Guardian Mode
The first feature, Guardian Mode, introduces a critical human checkpoint for all transactions. When activated, the Casa Recovery Key will refrain from signing a transaction until two Casa Advisors conduct a live video verification call with the account holder.
Subsequent to this verification, a 48-hour hold is initiated before the transaction signature is applied, providing users the opportunity to reconsider their actions if they felt coerced. Disabling Guardian Mode requires a similar process—a verification call coupled with a 48-hour delay—ensuring that an attacker cannot easily bypass this protection.
Guardian Mode operates on an opt-in basis and is available for Premium and Private Client members.
Whitelisting Addresses
The Whitelisting feature restricts vault withdrawals to a list of pre-approved addresses. Any new address introduced to this list undergoes a 48-hour waiting period before becoming active, during which Casa notifies the account holder via email.
This delay is specifically designed to interrupt a key aspect of social engineering: the fabricated urgency that compels victims to act hastily. Disabling Whitelisting also incurs a 48-hour hold to prevent an attacker from easily disabling the feature and misappropriating funds in a single action.
Suspicious Account Activity
The third feature monitors login locations and flags sessions that are temporally impossible given the timing of previous logins. Casa records location data at the city level upon sign-in but does not retain IP addresses; this location data is purged after 48 hours. For example, if a login from Tokyo occurs just 20 minutes after a login from Montreal, the system will trigger an email alert.
This feature is designed to detect unauthorized account access without infringing on user privacy.
Phone Call Detection
The fourth feature addresses the critical role that phone calls play in social engineering attacks. Casa’s research indicated that 20% of these attacks commence with an unsolicited call, where the attacker leverages real-time dialogue to create urgency and undermine the victim’s judgment.
The Casa application now detects any active phone call on the device, and if a user attempts to send funds during the call, they are required to enter a Casa Advisor Verification Code to proceed with the transaction.
A legitimate Casa advisor will possess this code. The application solely checks the status of the call without accessing audio, caller ID, or call content.
Casa emphasized that these features are part of a broader five-week initiative in collaboration with industry experts to enhance awareness regarding social engineering threats. The company noted that advancements in AI tools and data breaches have rendered such attacks more targeted and persuasive than in the past.
Thank you for visiting our site. You can get the latest Information and Editorials on our site regarding bitcoins.
