How to disconnect a crypto wallet from suspicious websites?

Identify Unauthorized Wallet Connections

1. Open your browser’s developer tools and navigate to the Application tab to inspect active service workers and stored permissions.

2. Review wallet extension pop-ups—many phishing sites trigger automatic connection requests without explicit user action.

3. Check your wallet interface for active dApp sessions; MetaMask and Phantom display connected sites under “Connected Sites” in settings.

4. Monitor transaction history for unrecognized signature requests or pending authorizations that never resulted in on-chain activity.

5. Use blockchain explorers to verify if any recent approvals were granted to unfamiliar contract addresses, especially ERC-20 or ERC-721 spenders.

Revoke Permissions via Wallet Interface

1. In MetaMask, go to Settings → Security & Privacy → Connected Sites and click “Disconnect” next to each suspicious domain.

2. For Trust Wallet, tap the profile icon → Wallet Connect → Manage Sessions and terminate all unverified connections.

3. In Phantom, access Settings → Connected Apps and remove entries with vague names, misspelled domains, or no clear origin.

4. Rainbow users must navigate to Settings → Dapp Permissions and toggle off access for domains lacking verified badges or SSL certificates.

5. Coinbase Wallet requires visiting the “Dapps” section, selecting “Manage Connections”, then confirming revocation for each questionable entry.

Clean Browser-Level Wallet Integrations

1. Clear site data specifically for the suspicious domain using browser settings—Chrome: Settings → Privacy → Cookies and other site data → Search domain → Remove.

2. Disable third-party cookies globally to prevent silent reconnection attempts during future visits.

3. Reset wallet extension permissions by removing and reinstalling the extension—this clears cached session tokens and local storage bindings.

4. Audit installed browser extensions for crypto-related overlays or injectors that may auto-connect wallets without consent.

5. Use private browsing windows exclusively for wallet interactions to isolate session data and avoid cross-site permission leakage.

Verify Contract-Level Approvals

1. Paste your wallet address into Etherscan and navigate to the “Token Approvals” tab to list all active allowances.

2. Filter results by status “Approved” and sort by date to identify recent grants to unknown contracts.

3. Use Revoke.cash or EthTracker to generate a safe transaction that sets allowance to zero for malicious spender addresses.

4. Confirm revocation success by checking the same Etherscan page after the transaction is confirmed on-chain.

5. Repeat the process on BSCScan, Solscan, and Arbiscan if your wallet holds assets across multiple chains.

FAQs

Q: Can a website reconnect to my wallet without me clicking “Connect” again?Yes. Some sites store session identifiers in localStorage or use persistent iframe-based hooks that auto-trigger reconnection if wallet permissions remain active.

Q: Does disconnecting from a dApp also revoke token approval?No. Disconnecting only terminates the frontend session. Token approvals are on-chain and require separate transactions to nullify.

Q: Will clearing browser cache delete my wallet seed phrase?No. Seed phrases are never stored in browsers. They exist only in your secure wallet backup or hardware device memory.

Q: How do I know if a domain is impersonating a legitimate dApp?Compare SSL certificate details, check for subtle character substitutions (e.g., “metamask[.]io” vs “metamaks[.]io”), and verify GitHub repositories or official Discord links before interacting.