MetaMask Fights Crypto Scams: New Feature Detects Address Poisoning Attacks in Real-Time

MetaMask Enhances Security: Real-Time Detection for Address Poisoning

In the world of crypto, a simple copy-paste action can sometimes lead to significant loss. Address poisoning attacks exploit the visibility of transaction histories. Scammers send a tiny, worthless token to a user's wallet. The real trick is that the sending address is a clever forgery—it matches the beginning and end of an address the user trusts, with only the middle characters altered. This fake address then sits in the transaction history, waiting for the user to mistakenly copy and send funds to it later.

A Growing Menace: The Scale of the Problem

This isn't a minor threat. Data from security firm Blockaid reveals a staggering rise in these attacks, with over 65.4 million incidents recorded between January 2025 and February 2026 alone. This surge highlights address poisoning as one of the most prevalent security risks in Web3 today, putting every active user in potential danger.

How the New Feature Works: Proactive Intervention

MetaMask's latest update shifts security from passive logging to active prevention. The new detection system works seamlessly in the background:

• Intelligent Comparison: When a user pastes or enters an address for a transaction, it is instantly checked against the wallet's history of past interactions.
• Risk Flagging: If the entered address closely matches a known address in the first and last characters but differs in the middle, it is flagged as a suspected poisoning attempt.
• Hard Stop Warning: Upon detection, MetaMask doesn't just give a subtle hint. It triggers a prominent, blocking alert within the transaction flow, forcing the user to consciously acknowledge the risk before proceeding.

Improved Visibility: Making Addresses Clearer

Complementing the detection is a visual upgrade. MetaMask now displays more characters of an address by default, reducing the chance of confusion caused by truncated displays. This gives users a better chance to spot discrepancies at a glance.

The feature is now live across both the MetaMask Mobile app and browser extension. For users prioritizing security, updating to the latest version is the first step to activating this essential new layer of protection.