I have had my wallet for approximately two years, and I’ve done almost nothing with it, except keeping it for when I might need it. For a long time, I didn’t have anything in my wallet, but there were two new projects I joined as an early investor. About a year ago, I invested significantly in these projects, which have only just launched.
Every month, I receive an X number of tokens on the dashboards of these projects that I can claim and send to my wallet. When I tried to do this last weekend, I first sent a small amount of ETH and POL to pay the transaction fees. To my surprise, these tokens suddenly disappeared. I discovered that my wallet has a sweeper bot.
I have never visited suspicious websites or connected my wallet to untrustworthy platforms. As I mentioned, I rarely used MetaMask, except when I needed to provide an address for these projects. These are legitimate projects, so I was not hacked by any of them.
I would kindly but urgently request the MetaMask team to add 2FA verification as soon as possible, to confirm transactions when tokens are deposited in or transferred out of a wallet, for example via email or SMS verification codes. With this method, the sweeper bot or other hacking techniques would be unable to take any tokens from your wallet, as a confirmation would first be required through email, Google Authenticator, or SMS. Other platforms, such as KuCoin, Binance etc do have this already if you want to login.
This is a simple addition that could help tens of thousands, if not hundreds of thousands, of users recover their tokens. Currently, I can do nothing with these tokens, even though their value has increased significantly. I sincerely hope MetaMask can add this. Security is one of the primary reasons crypto and blockchain exist. However, in my opinion, external platforms like wallets and exchanges could be much better secured.
Thank you in advance!
