Trust Wallet Adds Real-Time Scam Address Checks for Crypto Users

Trust Wallet has rolled out a proactive defense against address poisoning, introducing an automated screening feature that checks destination addresses against a live database of known scam and lookalike wallets. The noncustodial wallet provider said the protection will run in the background as users initiate transfers, aiming to thwart attempts to misdirect funds to illicit addresses. The rollout covers 32 Ethereum Virtual Machine-compatible chains at launch, including Ethereum, BNB Smart Chain, Polygon, Optimism, Arbitrum, Avalanche and Base, with the team signaling plans to expand over time. The move comes as the ecosystem contends with increasingly sophisticated phishing attempts that rely on users copying and pasting addresses from their transaction history.
Trust Wallet described address poisoning as among the crypto space’s fastest-growing threats, citing figures that place the total number of attacks at over 225 million and losses nearing $500 million to date. In address poisoning scams, perpetrators typically send a harmless, small amount to a target to establish a history, then capitalize on users who replicate addresses from their own transaction history, inadvertently sending larger sums to the attacker’s wallet. The new screening mechanism seeks to disrupt this attack chain by preventing outbound transfers to detected poison addresses before they are executed.
Beyond automated checks, the broader industry has been pushing for preemptive safeguards across wallets. Notably, several wallets already employ transaction-filtering tools designed to curb malicious transfers—for instance, Rabby Wallet, Zengo Wallet and Phantom Wallet have each introduced similar layers of screening to reduce exposure to scam addresses. The emphasis on preventative controls mirrors growing calls for a more defensive stance from the wallet ecosystem, especially as attackers increasingly rely on social engineering and lookalikes that mimic legitimate counterparts.
The topic has taken on renewed urgency in light of high-profile incident data. In December 2025, a single USDt (USDT) transfer tied to a poisoning scheme underscored the potential scale of losses, prompting calls from industry figures for more robust wallet-level defenses. Analysts and security researchers have long argued that users should not copy addresses from transaction histories, a practice that continues to contribute to successful exploits. Security firm Hacken has highlighted the importance of circumventing copy-paste habits as part of a multi-layered defense strategy.
Security researchers have pointed to the conflicts between convenience and protection in wallet design. The push for stricter verification aligns with expectations that wallets should act as the first line of defense—filtering out poison addresses and preventing users from inadvertently participating in scams. Some commentators have called for wallets to proactively block any receiving address that appears on a known poison list, a stance that aligns with broader calls for universal adoption of blockchain-querying checks at the point of interaction.
In parallel, discussions around address poisoning—both the technical mechanisms and the user-behavior patterns it exploits—continue to evolve. The episode underlines why exchanges, wallets and service providers alike must invest in robust address-checking capabilities, while users remain urged to verify recipient addresses through independent channels and avoid relying solely on transaction histories when copying addresses from trusted sources. As the ecosystem expands, the balance between user experience and security will remain a focal point for developers and regulators alike.
Why it matters
The introduction of address-poisoning protection marks a meaningful step in reducing on-chain losses and encouraging safer transaction practices across major EVM networks. For users, the feature represents a real-time safety net that can prevent inadvertent transfers to illicit wallets if a recipient address matches a known scam pattern or closely resembles a legitimate one. For builders and wallet providers, it sets a benchmark for proactive risk management and cross-wallet collaboration on threat intelligence, potentially reducing the volume of successful attacks that rely on social engineering and address lookalikes.
From a market perspective, the development reinforces the idea that security enhancements are increasingly becoming a differentiator among wallet ecosystems. As hackers refine their techniques, the emphasis shifts from purely cosmetic features to verifiable protections that can be audited and verified by users and independent researchers. The industry’s collective response—combining automated screening, user education and responsible disclosure—could contribute to a more resilient infrastructure over time, even as the crypto landscape remains sensitive to regulatory signals and macro risk sentiment.
For investors and users, this shift underscores the importance of risk management in wallet selection and usage. While no single protection can eliminate all threats, multi-layered defenses—complemented by best practices such as avoiding address copy-paste from transaction histories—can materially reduce exposure to address-poisoning schemes. The broader narrative is one of maturation: as wallets adopt more rigorous checks, the friction between speed and security may gradually tilt toward safer, more reliable user experiences.
What to watch next

Expansion of the poisoned-address database to cover additional chains beyond the initial 32 EVM-compatible networks, with a timeline for rollout on non-EVM platforms.
Independent audits or third-party attestations validating the accuracy and speed of the destination-address screening feature.
Adoption metrics across wallets that implement similar protections, including user feedback and impact on attempted phishing campaigns.
Updates from Trust Wallet or partner security teams regarding any zero-day findings or refinements to the poisoning-detection database.

Sources & verification

Trust Wallet official announcement: address poisoning protection and rollout details.
On-chain data and public logs illustrating address-poisoning incidents (e.g., notable large transfers cited in December 2025).
Binance Square commentary by Changpeng Zhao advocating universal poison-address checks across wallets.
Security research from Hacken’s Extractor team on best practices not to copy addresses from history.
Industry coverage of Rabby, Zengo, and Phantom Wallets’ transaction-filtering approaches.

Trust Wallet rolls out address poisoning protection across 32 EVM chains
Trust Wallet has introduced a proactive defense against address poisoning by adding a destination-address screening feature that checks outgoing transfers against a live database of known scam and lookalike wallets. The aim is to stop users from accidentally sending funds to illicit addresses before the transaction is confirmed. The company emphasized that the protection operates automatically, running in real time as a user initiates a transfer. The initial scope includes 32 EVM-compatible networks, with Ethereum (CRYPTO: ETH) at the forefront, along with BNB Smart Chain, Polygon, Optimism, Arbitrum, Avalanche and Base. The firm noted that address-poisoning attacks have emerged as a fast-growing threat within crypto markets, and it cited figures indicating more than 225 million attacks and roughly $500 million in confirmed losses to date.
Address poisoning, a form of phishing, exploits the habit of users copying and pasting addresses from transaction histories—a behavior that can enable attackers to divert funds to malicious wallets. By cross-referencing recipient addresses with a database of poison addresses, Trust Wallet’s system can halt transactions before they leave a user’s control. This approach aligns with broader industry moves toward preemptive risk controls, particularly as scammers increasingly rely on social engineering and ambiguous address representations to mislead victims.
Industry observers point to complementary protections already available across wallets. Rabby Wallet, Zengo Wallet and Phantom Wallet have implemented early-warning systems or blacklist-based checks aimed at stopping transfers to flagged addresses. The emphasis on prevention reflects a broader trend toward user-centric security features that do not rely solely on post-incident recovery. In tandem with these protections, security researchers and users alike continue to advocate for best practices, such as avoiding direct copying of addresses from transaction histories and verifying recipients through independent channels.
The December 2025 incident involving a USDt (USDT) transfer underscored the ongoing risk, drawing attention to the need for wallet-level defenses that can catch poisoned addresses before funds move. Industry voices have stressed that wallets should not display or reproduce harmful transactions in the first place, a stance echoed by prominent figures who argue for a universal, automated filter at the point of interaction. While no solution is flawless, the convergence of automated screening, user education and cross-wallet sharing of threat-intelligence signals a maturing security posture across the crypto ecosystem.
As the rollout unfolds, the crypto community will be watching for how well these protections scale across networks and how quickly users adapt to new prompts or warnings when initiating transfers. The goal is a safer user experience that preserves the speed and convenience that attract new participants, while delivering meaningful guardrails against one of the space’s oldest and most persistent attack vectors. In a rapidly evolving threat landscape, Trust Wallet’s move signals a continued push toward stronger, more transparent security practices that could shape wallet design choices for years to come.
This article was originally published as Trust Wallet Adds Real-Time Scam Address Checks for Crypto Users on Crypto Breaking News – your trusted source for crypto news, Bitcoin news, and blockchain updates.