This can expose users to malicious apps or compromised frontends, because the default pattern for many users is to grant unlimited approvals which can be used to drain their funds.
Quote
Sources
Trillion Dollar Security Project Security Challenges Overview
Referenced by
The first Trillion Dollar Security (1TS) report reveals that most Ethereum wallets rely on insecure key-storage methods, such as plaintext seed phrases, and lack built-in tools to manage or revoke token approvals, leaving users exposed to phishing and malicious contracts
Crypto news
Claim
