One such case occurred in January. At that time, a user lost about $12.2 million after copying a fake address from the transaction history, which looked almost identical to the real one.
This incident happened just a month after another major attack. In December, scammers used the same scheme and managed to steal about $50 million.
Isn’t it time to put an end to this?
Apparently, Trust Wallet thinks so too. The company has introduced a new feature called Address Poisoning Protection. It is designed to detect one of the most common types of social engineering in the crypto industry even before a transaction is sent.
Let’s figure out how it works.
Fraud That Doesn’t Steal Your Keys
A scammer sends a small transaction with an almost zero amount to the victim’s wallet. The sender’s address is deliberately chosen to look as similar as possible to one the user has interacted with before. After such an operation, the fake address automatically appears in the transaction history.
The problem appears later. When the person sends funds again, they might copy the address directly from the transaction history or clipboard. In a rush, it’s easy to pick a similar address and not notice the substitution.
In this scheme, attackers don’t need to hack the wallet or steal private keys. Everything relies on the visual similarity of addresses and users’ typical habits.
Detecting Fake Addresses Before Sending Funds
The new protection feature in Trust Wallet works at the moment when the user enters or pastes the recipient’s address.
When the address is pasted into the send field, the wallet automatically performs a real-time check. The system compares it with known address poisoning attack patterns and suspicious lookalike addresses. If the address is too similar to one the user has interacted with before, the wallet displays a warning.
The feature also displays a side-by-side comparison of addresses, highlighting the characters that differ. This helps quickly check the address and make sure the funds are being sent to the correct recipient.
The check works automatically on all supported networks and is built into the standard transaction sending process. The user does not need to enable additional security settings.
Moving Away From Static Scammer Lists
Many crypto wallets already use blocklists of known malicious addresses. The problem is that in address poisoning attacks, new addresses are usually created that haven’t yet made it into such databases.
The Trust Wallet approach is different in that the system relies not only on static lists. Instead, it uses real-time security data streams. The solution combines information from HashDit, Binance Security, and Trust Wallet’s own monitoring tools.
See also: Bitcoin’s Correlation With Nasdaq Hits Highest Level in Years
This allows the wallet to detect suspicious patterns that may indicate an attempt to impersonate another address, not just block already known scam wallets.
The protection is triggered before the transaction is confirmed, which is especially important. Once a transfer is recorded on the blockchain, it can no longer be reversed.
Another Layer of Protection in Trust Wallet
The Address Poisoning Protection feature has become part of the security system that Trust Wallet has been gradually developing for several years.
In 2023, the company launched the Security Scanner. This tool analyzes transactions before they are confirmed. The system checks the structure of the transaction itself and can detect phishing contracts, malicious dApps, suspicious token permissions, and other potentially dangerous actions.
Since its launch, the Security Scanner has already helped prevent major losses. According to Trust Wallet, the system has prevented more than $458 million from being sent to malicious contracts, helped recover over $2 million in stolen funds, and in 2025 alone blocked fraudulent transactions totaling about $191 million.
See also: Traders Placed $1.2 Billion in Oil Bets on Hyperliquid
The new protection against address poisoning operates at a different stage of the transaction process.
Security Scanner checks what the user is actually signing by analyzing the transaction content and possible risks.
Address Poisoning Protection checks who the funds are being sent to, detecting address spoofing attempts before the transaction is even created.
Together, these tools form a multi-layered protection system. It helps detect both technical vulnerabilities and scams that rely on user inattention.
Protection Against the Simplest Attacks
Many crypto attacks today are no longer about hacking smart contracts or complex cryptography. More and more often, scammers exploit the simplest factor—human inattention.
Address poisoning is one such type of attack. The scheme works on users’ habits. People often copy addresses from transaction history or just rely on a familiar set of characters without checking it completely.
That’s exactly what attackers take advantage of.
See also: Zcash Outpaces Bitcoin After Developer Team Raises $25 Million
That’s why tools that can spot suspicious address similarities in time are becoming increasingly important. They allow you to stop a transfer before the money goes to the wrong place.
The latest Trust Wallet update reflects this trend. Security today is not just about protecting against technical vulnerabilities, but also about trying to recognize simple tricks that users most often fall for in advance.
