CoinZoom staff will never ask you for your password, 2-factor authentication codes, or request remote access to your computer. If you are being asked to provide any of this, you can be sure the email did not originate from CoinZoom.

Emails from CoinZoom will always have the domain name at the end of them. For example  emails from,,, and any other email from the domain can be trusted.

We also send emails from CoinZoom sub-domains. For example a message from are valid. Note that the email address ends in

Regardless of sub-domain, we cryptographically sign all of our emails using DKIM and protect our domain against unsigned email with DMARC.

To verify the legitimacy of other channels, refer to these pages for social media and phone support