Stop Web3 phishing before you sign

Independent defensive knowledge base on social engineering and wallet-draining scams.

Open the Defender app Get live scam alerts

Approval phishing

Signing an approval or Permit2 message hands attackers spending rights. Prefer exact-amount approvals; revoke unused allowances.

Address poisoning

Lookalike transfers seed a fake address into your history. Verify the full address; use an address book.

Seed-phrase scams

No legitimate service asks for your recovery phrase. Never type it into any website.

Malicious signatures

Permit, Permit2 and Seaport messages can move assets. Sign only decoded, understood requests.

Fake airdrops / drainers

Spoofed claim pages route clicks into drainer contracts. Open dApps via bookmarks; simulate transactions.

Fake support

Teams never DM first or ask for a seed phrase. Verify identities before acting.

Scan now — it's free Open in Telegram