Check your wallet permissions for potential vulnerability

From the Rarible blog.

A 100% safe and easy way to check if your wallet was affected in the recent smart contract issue.

Hey, Rari Gang!

Earlier in July, we discovered an issue with two Ethereum smart contracts that are no longer in use. Unfortunately, users who approved ERC-20 tokens to the following contracts were exposed to potential exploits which could result in the loss of funds:

– 0xf12e1aaec6f1f3fee011a7be5ae53633286b3bbb

– 0x05632408ecf267fb7acca9050a53413737bf4f65

Luckily, only 0,001% of users were affected by the issue. Of that small percentage, only a few lost funds, which luckily kept the damage to a minimum. We have already contacted the majority of the affected users privately and reimbursed everyone for the full amount.

We want you to stay safe and in full control of your funds—on Rarible or any other place in the Web3 where you encounter those contracts. That’s why you’ll find a quick step-by-step guide below that helps you check your wallet for potential vulnerability and revoke associated permissions if you are one of a few dozen users affected by the recent issue.

How to check if your wallet was affected

Please enter your Ethereum wallet address. Wallet addresses are public and you won’t have to connect your wallet to anything, so you don’t risk anything by putting it in.

How to revoke token permissions

Step 1. Head to Etherscan’s token approval checker. If you don’t trust clicking an external link, you can manually search for the Etherscan token approval link—however, please triple-check the URL to make sure it’s the official domain for Etherscan (

Step 2. Login to your wallet via the “Connect to Web3” button.

Step 3. Select the ERC-20 tab and check “Show all approvals”.

Step 4. Locate and revoke the approved spender(s) shown in the wallet check above.

Step 5. Sign and execute the Revoke transaction.

Step 6. Confirm all affected contracts were revoked by reentering your wallet address in the “Check if your wallet was affected” link.

  • If your wallet is still affected, repeat Step 1
  • If your wallet is not affected now, you are no longer vulnerable to this security issue.  

That’s it! Your NFTs are safe. It’s a good habit to regularly check your token approvals and see which you don’t need any longer. Especially if you interact with lots of smart contracts. That’s kind of like brushing your teeth—an easy ritual that you do to prevent bigger problems.

And, of course: for extra safety, remember to use a hardware wallet!

The article above came directly from the Rarible blog, found on

Latest News