OCT 30, 2023
Wallet Guard Extension - How To Proactively Secure Your Crypto Wallet
Open-source browser extension that identifies scams and wallet drainers before they interact with your wallet.
Would it not be great to get a warning that alerts us that we are about to sign a malicious crypto transaction?
Well, we are in luck...Wallet Guard is an open-source browser extension that detects wallet drainers before they interact with your crypto wallet.
Wallet Guard does:
- Simulate transactions
- Detect Phishing Websites
- Detect Malicious Extensions
- Detect High-Risk Approvals
Let's have a look into the details of those features.
Wallet Guard Transaction Simulation
Once Wallet Guard is installed as a browser extension, it will simulate any transaction approval so you can verify the transaction details before proceeding with the crypto wallet approval.
As an example, we are listing one of our NFTs in the OpenSea marketplace.
To approve the listing, OpenSea is asking us to review and confirm the listing in our crypto wallet but, before this happens, Wallet Guard will review the transaction request.
Wallet Guard will review the transaction request for scams, and if none is detected will prompt us to Continue (or Reject) the transaction.
If we choose to continue, our crypto wallet will send us a notification to sign or reject the transaction.
While Wallet Guard actually scans for a considerable number of threats, you CANNOT leave all your personal security to juts an APP.
Wallet Guard is an additional layer of defense.
Type of Scams Detected by Wallet Guard
Get to know what type of threats Wallet Guard can detect and which ones are yet beyond the application's capabilities.
As described in their Reference Documentation webpage, Wallet Guard can detect or plan to detect the following scam types:
- Wallet Drainers (available): A fraudulent new NFT mint site that drains all NFTs, tokens or other assets within your wallet
- Seaport Listing Scams (available): Exploits open approvals on the old OpenSea wyvern contract which allows assets to be listed and bought by an attacker on OpenSea for 0 ETH. This is how Kevin Rose was scammed
- Blur Listing Scams (available): Exploits open approvals from assets you've previously sold/listed on Blur. Attacker is able to sell the asset to themselves for 0 ETH
- Malicious signatures (available): Set Approval For All, eth_sign, and other arbitrary value transfer functions. Set Approval For All is allowed on verified marketplaces
- ETH Drainers (available): A scam website that claims to be a NFT mint but actually steals all the Ethereum from an account
- Low trust domains (available): Websites with very low reputation, which are often related to spam, malware, social engineering, and scams.
- Homoglyphs (available): øpeñsea.com (malicious) vs opensea.io (verified)
- URL typo-squatting (available): opensae.net (malicious) vs opensea.io (verified)
- OFAC blocklist (coming soon): Screening information against OFAC's blocklist
- Honeypot detection (coming soon): Smart contracts that only allow for assets to be sent in and not sent out.
- Address screening (coming soon): Aggregating data from other blockchain data providers
- Rug pulls (not available): We cannot predict the intentions of an NFT project that is minted legitimately but then proceeds to abandon the project.
- Seed phrase compromise (not available): We cannot detect scams that lure a user into giving away their seed phrase to an attacker. However, if the method for the attack is a phishing website it is possible that the Phishing Detection Service's URL scanner may catch it.
- Malware (not available): Malicious file downloads from play-to-earn malware campaigns or any form of malware.
Wallet Guard Phishing Detection
To continue reading this piece you'll need to support the author by logging in and connecting a wallet and locking ACS with them. By having an locked at least the minimum of 250 ACS locked, you'll be able to continue reading this piece.