Glossary
Phishing
Tricking a user into signing a transaction or revealing a seed phrase via a fake site, fake message, or fake support channel.
Crypto phishing has evolved from the "send me your seed phrase" DM into something far more dangerous: a slick fake site that mimics a real dApp and asks you to sign a transaction that drains your wallet via a token approval or a setApprovalForAll on your NFTs.
The signature looks innocuous; the on-chain action drains every asset the approval touches. The defenses: hardware wallets that show the actual call data, transaction simulators (Pocket Universe, Blockaid), and never signing anything you didn't initiate from a URL you typed yourself.