Key Points:
The website shows that the number of malicious addresses included is 1,286,478, and the number of phishing websites included is 90,931, and it is constantly being updated. Currently only two chains, ETH and BSC, are supported.
Included functions: Token contract monitoring, wallet authorization management, active defense against fraudulent token threats, active defense against phishing website threats, trusted domain name detection, malicious plug-in detection and other anti-phishing website functions.
Included features: detection of malicious Seaport transactions, Honeypot NFTs, and phishing sites.
Use features: do not link the wallet, verify the transaction security by simulating the transaction, slightly affect the transaction speed (no more than 1 second).
Included features: warnings will pop up for transactions on non-whitelisted NFT trading websites and phishing websites; authorization can be revoked.
How it works: Monitors the security of scanned transactions by simulating the ERC-20, ERC-721, and ERC-1155 transactions affected by users.
Features: Block access to recently created and low-trust websites, automatically disable malicious extensions, monitor and block access to phishing websites.
Function: Only supports BTC, ETH, BSC, Polygon, Fantom, Arbitrum, Cronos, Avalanche, Optimism, Moonbeam public chains and Opensea. You can view the flow of funds in the address, monitor the risk of NFT collections, and interact with products such as Debank and NFTGo.
Function: AI algorithm simulation transaction and address scoring
Working principle: identify approve and send transactions, and use black and white lists and check the status of authorized addresses to help users warn and block phishing websites. No need to connect wallet, no authorization required.
How it works: Stelo suspends transaction requests sent to Metamask by wrapping the window.ethereum Javascript object that Metamask injects into the page. Once the user approves the transaction in Stelo, it resumes the Metamask request, and if the user rejects it, it cancels the request.
Included functions: Detector API (monitoring malicious behaviors such as transferring user assets and requesting authorization), simulated transactions, etc.
Cosine, the founder of SlowMist, said that he has focused on Scam Sniffer, Revoke.cash, Wallet Guard, Pocket Universe, and Fire.
The most used and full-featured is PeckShieldAlert. But in terms of the number of installations, it is almost negligible compared with MetaMask 10M+ and Phantom 2M+. In addition, there is no financing information in this field, which shows that no real attention has been paid to it from the perspective of users or investors.
SlowMist team member @IM_23pds opinion:
Phishing attacks on the blockchain industry are mainly distributed in two points: domain names and signatures, and 90% of NFT phishing attacks are related to fake domain names. If the user opens a phishing page, the relevant plug-ins and browsers can directly prompt the risk, so that there is no subsequent step of fraudulent signature, and the risk can be blocked in the first step.
The 360 era in the previous Web2 world solved the problem of virus attacks for novice users at that time, but it did not solve the problem of Trojan horse viruses. There is always a time difference between virus detection and virus prevention (a professional technology to avoid anti-virus software detection and killing, you can Google it yourself). How to make the time difference smaller, the number of samples faster, and the identification more accurate determines the anti-virus software degree of power.
Similarly, in the blockchain and NFT industries, how to identify and remind the real-time situation of phishing sites in the first step, and the feedback speed and recognition degree on the user end also determine the ability of an anti-phishing plug-in; Identifying these phishing domain names in the first step will greatly increase the risk of users losing coins.
Previously, if the wallet had fraudulent signature identification, it could well display the detailed information of the user’s signature, such as what to authorize, how much, to whom, and other human-readable data, and it could also avoid theft to a certain extent. However, although MetaMask currently has a market share of 80%, the analysis is really difficult.
Although there are some products that do a good job in analysis, they still cannot prevent the loss of coins and NFT. Any products, articles, and reminders are auxiliary. Only by establishing your own security awareness can you be able to stand on a place where you don’t lose coins or NFTs. Personal safety awareness is king.
Blockchain researcher @tmel0211 opinion:
The technical logic of self-custodial wallets such as MetaMask is to help users safely keep local private keys, process user transaction signatures, provide gateways to connect to the main networks of major blockchains, and facilitate smart contract interactions such as DeFi.
In theory, it is feasible to embed any plug-in service that optimizes the experience without affecting the wallet transfer interaction function. Anti-phishing address screening can only be regarded as one of the rigid requirements.
However, the functions of the current mainstream wallet products are very simple, and they are very restrained in service optimization. The reasons are as follows:
At present, mainstream browser security plug-ins in the market are mostly provided by third-party security data companies: the experience is good, but the popularity is not enough. They all have a dream to become 360 security guards guarding web3, although the road is long and difficult:
In our opinion, the wallet narrative should tend to be vertically segmented.
But in any case, this does not conflict with the security plugin service market. At this stage, they coexist and complement each other. We believe that an excellent browser security plug-in will eventually become a standard configuration like a wallet.
DISCLAIMER: The Information on this website is provided as general market commentary and does not constitute investment advice. We encourage you to do your own research before investing.
Join us to keep track of news: https://linktr.ee/coincu
Harold
Coincu News
BTFD Coin is offering a chance to relive the glory days of meme coin investing,…
Explore key takeaways from BlockDAG’s AMA, showcasing strides in scalability, growth of the ecosystem, and…
Discover why Qubetics, Polkadot, and Cosmos are the best cryptos with 1000X potential, offering innovation,…
Explore the best coins to buy in December 2024—Qubetics with its thrilling presale, Polkadot’s interoperability,…
The Crypto Market Outlook 2025 highlights key areas: stablecoin growth, tokenization, crypto ETFs, DeFi innovation,…
The Bitcoin quantum computing threat is years away, but reserves already support post-quantum signatures via…
This website uses cookies.