Overview

The dApp Protection feature is an optional feature built to provide security insights into your Web3 operations via the Fireblocks platform. When connecting to a third-party decentralized application (dApp) via WalletConnect or initiating a contract call transaction, the dApp Protection feature analyzes the data for anomalies or similarities to known attacks.

How it works

• If the dApp Protection feature deems a Web3 connection or transaction as potentially dangerous, you will receive additional information about the contract during the approval and signing process. Learn more below.
• If information about a dApp is not immediately available to Fireblocks, no flag will appear and you may connect as normal. Once information becomes available, if we deem the connection to be potentially dangerous you will be automatically disconnected from the dApp and a Malicious flag will appear when you attempt to reconnect. If you choose to reconnect to the dApp in spite of this flag, you will not be automatically disconnected again.
• Upon initiating a new contract call transaction, the dApp Protection feature uses an internal security screening to look for anomalies and similarities to known smart contract attacks. During the screening, the transaction appears in Pending Security Screening status.
• If information about a smart contract is not immediately available to Fireblocks, no flag will appear and you may interact as normal. Once information becomes available, if we deem the smart contract to be potentially dangerous a Malicious or Suspicious flag will appear when you attempt to approve the contract call transaction. Learn more below.
• A transaction may be flagged for multiple reasons. In this scenario, the security alert lists them in descending order of severity.

Please note that operations may be flagged for various reasons. For example, an operation may be flagged because the dApp’s website was created very recently or only a small percentage of Fireblocks’ clients have interacted with that particular smart contract. If Fireblocks does not have sufficient data to make an assessment about the operation, no flag will appear; however, you should always proceed with caution. The absence of a flag does not guarantee the security of a transaction.

Please ensure you continue to conduct your own due diligence and adhere to your internal security policies and business rules when executing any transaction. The dApp Protection feature provides you with additional information regarding potential threats, but it is not a replacement or substitute for your internal compliance and security processes. As such, Fireblocks is not liable for any losses arising from your use of and reliance on the dApp Protection feature.

Security threat levels

• Malicious: Fireblocks flags operations as Malicious if we deem the security threat high enough to suggest you halt the operation.
  
• Suspicious: Fireblocks flags operations as Suspicious if we find certain abnormalities and believe you should double-check all details of the contract and transaction before continuing with the operation.
  

Viewing security information

When approving or signing dApp connections or transactions, any related security information appears in the Fireblocks Console or mobile app. In the Fireblocks mobile app, you can tap on the message to view the specific details that caused the operation to be flagged.

Console alert

Mobile app alert

Monitoring dApp connections

After you connect to a dApp via WalletConnect, Fireblocks analyzes the dApp’s data every 24 hours. If we deem the connection to be potentially dangerous at any point during the analysis, you will be automatically disconnected from the dApp. If you attempt to reconnect to the dApp, you will receive a flag with additional information regarding the potential security threat.