Common DApp risks and how to avoid them

  1. Poorly designed DApp

DApps are built using smart contracts, which consists of code - and code sometimes has bugs. The most reputable DApps have been thoroughly audited by third-party security firms, but many DApps have not been audited. This means there's a chance the DApp you're connecting to may contain a weakness that could be exploited by hackers - with the result that the funds you send to the DApp could be lost or stolen.

  1. Malicious DApp

The risk here is the same as with a poorly designed DApp. The only difference is, with a malicious DApp, the code has been purposely compromised, usually in such a way that the DApp makers can steal funds.

The best way to avoid losing your funds to poorly designed and/or malicious DApps is to take the time to investigate the DApp maker and ensure that the DApp's code has been audited by a reputable third-party service.

  1. Phishing DApp

Let's say you fully trust the 'ABC Finance' DApp. It has a solid team of developers behind it, and the smart contracts it is compromised of have been audited by two reputable third-party security firms. When you search for ABC Finance's website, imagine you accidentally click on a link that takes you to ABDfinance.com. This website looks identical to the ABC Finance website you're used to, but when you connect your wallet, you're unknowingly connecting to a malicious DApp. Any funds you send to the DApp, rather than earning you passive interest as you intended, are instead stolen by the 'phishing' DApp's creators.

The best way to avoid getting caught by a phishing DApp is to double check the URL of the DApp's webpage to ensure it is correct. Another tip is to check that the lock icon (🔒 ) appears in your browser's address bar preceding the website's URL.

Read more: What is WalletConnect? Learn about the bridge that connects your wallet to DApps and how to use it.

Was this helpful?

Related guides

Start from here →
What is WalletConnect?

Learn about the bridge that connects your wallet to DApps and how to use it.

Read this article →
What's a DApp?

Understand the basics of decentralized applications on Ethereum; their features and their current limitations.

Read this article →
What's a smart contract?

Get the basics on the "software" that runs on the Ethereum shared computer.

Read this article →
What's decentralized finance?

Learn what makes decentralized finance (DeFi) apps work and how they compare to traditional financial products.

Read this article →
What is ETH used for?

Understand the function and utility of ETH.

Read this article →
How to buy ETH

Learn how to buy ETH and hold it securely in a digital wallet you control.

Read this article →
What is Ethereum?

Understand Ethereum's key characteristics.

Read this article →
What are ERC-20 tokens?

Learn the basics of the Ethereum token standard, what ERC-20 tokens are used for, and how they work.

Read this article →
How to create an Ethereum wallet

Creating an Ethereum wallet is as easy as installing software on your mobile device or laptop/desktop.

Read this article →
Start from here →
Start investing safely with the Bitcoin.com Wallet
Over 20 million wallets created so far

Everything you need to buy, sell, trade, and invest your Bitcoin and cryptocurrency securely

Bitcoin.com in your inbox

A weekly rundown of the news that matter, plus educational resources and updates on products & services that support economic freedom