FREE REPORT: A New Way to Earn Passive Income in 2025 DOWNLOAD

DApp wallet security flaw grants smart contracts complete fund access

In this post:

Crypto wallets firm ZenGo has developed a testnet to exhibit a common DApp wallet security flaw. According to an article published by the crypto wallets firm on March 23, this DApp wallet security flaw will accord full access to the user’s tokens reserved in the wallet.

 

According to ZenGo, almost all DApps have demonstrated the weakness that makes users unknowingly grant DApp smart contracts full power over their assets. To fully exhibit this weakness, the crypto wallets firm has created a public testnet that has a “rogue” token interchanging decentralized app called baDAPProve:

 

“As a result, if the DApp is vulnerable to a security issue or is rogue to begin with, attackers can abuse these highly excessive privileges to steal ALL of the DApp’s users holdings (in the approved tokens) without any further user consent. They can do so at any point in the future, even if the user no longer uses the DApp.”

DApp wallets security flaw demonstrated

When a DApp wallet user sanctions a distinct amount of FTR tokens on the system, baDAPProve clears out all the FTR tokens in the user’s wallet. The demo stresses the threats posed by the fragility of the wallets.

 

At the moment, ZenGo is developing a solution to this security threat. The DApp wallets security flaw was unearthed some years back, but ZenGo believes that the developers are not creating enough awareness of the dangers posed by the security flaw.

See also  Phantom wallet introduces on-chain perpetual futures trading with 40x leverage

 

The crypto wallets provider pinpointed Opera, Imtoken and Trust wallet among the wallet providers who hesitate to caution users of the security flaw. Trust Wallet revealed it would revamp its network following a consultation by ZenGo.

Coinbase among firms that caution users

Furthermore, ZenGo discovered that Brave and Metamask wallets both issue users with advanced adjustments that regulate the amount accessible by DApps. On the other hand, Coinbase gives prior caution to users about the danger posed by the security flaw.

 

Your crypto news deserves attention - KEY Difference Wire puts you on 250+ top sites

Share link:

Disclaimer. The information provided is not trading advice. Cryptopolitan.com holds no liability for any investments made based on the information provided on this page. We strongly recommend independent research and/or consultation with a qualified professional before making any investment decisions.

Most read

Loading Most Read articles...

Stay on top of crypto news, get daily updates in your inbox

Editor's choice

Loading Editor's Choice articles...

- The Crypto newsletter that keeps you ahead -

Markets move fast.

We move faster.

Subscribe to Cryptopolitan Daily and get timely, sharp, and relevant crypto insights straight to your inbox.

Join now and
never miss a move.

Get in. Get the facts.
Get ahead.

Subscribe to CryptoPolitan