MetaMask, Phantom and other major crypto wallets have teamed up with the Security Alliance to launch a world phishing defense network as crypto phishers stole over $400 million in the primary half of 2025.
“We have joined forces to launch a world phishing defense network that may protect more users across the ecosystem,” the MetaMask team said on Wednesday.
SEAL explained that the brand new defense network “would allow us to create a decentralized cryptosecurity immune system where anyone from anywhere on the planet can prevent the subsequent major phishing attack.”
The “decentralized immune system” includes MetaMask, Phantom, WalletConnect and Backpack.
It will work with SEAL's “verifiable phishing reporting” system, which was announced last week. The recent tool allows security researchers to prove that malicious web sites actually contain the phishing content that the user claims to see.
MetaMask joins the fight against phishing. Source: MetaMask
The fight against crypto drainers
The growing problem is crypto drainers who’ve evolved their tactics to bypass traditional defenses, SEAL explained.
New methods to lure victims include rotating landing pages more quickly when blacklists are updated, switching to offshore hosting when infrastructure providers crack down, and using cloaking techniques to avoid automatic scanning.
“Drainers are a relentless game of cat and mouse,” said Ohm Shah, security researcher at MetaMask.
Working with SEAL allows wallet teams to be more agile and put research into practice “to effectively stem the flow,” he added.
Deploy to as many wallets as possible
The partnership enables an end-to-end pipeline by which user-submitted reports are mechanically validated and shared across all participating wallets, providing immediate protection against recent phishing threats.
“Anyone with a sound report can trigger a phishing alert to all network participants in real time and without special permissions,” SEAL explained.
“This means faster response times to recent phishing threats and more cash saved. We need to spread this data to as many wallets as possible.”
According to CertiK, phishing attacks represented nearly all of security incidents in the primary half of this 12 months and resulted in greater than $400 million price of stolen cryptocurrencies.
