Why approvals are the real attack surface
When you use a DEX or a dapp, you grant a contract permission to move a token on your behalf. That permission does not expire. Phishing sites copy this exact flow: they show a normal-looking approve request, and once signed, the attacker's contract can drain that token on its own schedule. There is no second confirmation. The dangerous part is that everything looked routine at signing time.
How to spot exposure
Two signals matter. First, dust and airdrop tokens: unsolicited tokens are the bait that lure you to a phishing site in the first place. Radarium flags heavy dust exposure because it widens the surface. Second, the standing approvals a wallet has accumulated. A wallet that has interacted broadly and never cleaned up is carrying risk it cannot see. The scan surfaces these so you know whether a cleanup is overdue.
The fix is manual and simple: hide unknown tokens, never approve anything you did not initiate, and revoke approvals you no longer use through your wallet or a revoke tool. Radarium tells you the address is exposed; you do the revoke.
Watch for the next one
New approvals are a monitoring signal too. On paid tiers, Radarium watches registered wallets and alerts on sharp risk changes, which includes a fresh approval that moves the score. If a wallet you own suddenly grants something you did not expect, you hear about it in seconds.
How do I revoke a token approval?
Through your wallet's approvals view or a revoke tool. Radarium shows you the exposure; the revoke happens in your own wallet, never through us.
Can Radarium see a phishing approval?
Radarium scores approval surface and dust exposure, the conditions phishing relies on. It flags the risk so you can clean up before a drainer uses it.
Is the approval check free?
Yes. Scanning a wallet's risk surface is free and read-only. Alerts on new approvals are a paid monitoring feature.