Home - Coinspect Security
wallet security ranking results third edition

Wallet Security Ranking: Third Edition

Matias Sequeira
linkedin icon twitter icon
Security Engineer
Alejo Sequeira
linkedin icon
Software Developer
Wallets

Based on a comprehensive security evaluation of 77 crypto wallets across iOS, Android, and browser extensions, and a total of 2,233 individual security items checked, we released the third edition of Coinspect’s Wallet Security Ranking. Since our last update, we’ve:

  • Re-evaluated every previously ranked wallet to capture the latest fixes, regressions, and feature rollouts.
  • Added NuFi and Elytro browser extensions wallets to the evaluation pool, as part of a commitment to share testing results with the WalletBeat initiative.

Our mission remains unchanged: to provide transparent, objective security benchmarks that empower users to choose safer crypto wallets while motivating developers to raise Web3 security standards.

If you’re new here, check out our methodology deep-dive to understand how we evaluate wallets.

Highlights

Of the web3 wallets evaluated across iOS, Android, and browser extensions, 39 moved up in the rankings, while 22 moved down.

  • Phishing address detection is surging. Adoption grew by +17.4% on extensions, +10.7% on Android, and +10.4% on iOS—the biggest improvement across all categories.
  • Malicious dApp detection is lagging on mobile. While extensions improved by +4.3%, mobile platforms declined by -2.8% on iOS and -8.0% on Android.
  • Transaction simulation adoption is rising on extensions and iOS, with +8.7% and +5.4% growth, respectively.
  • eth_sign remains a systemic risk: 14.3% of Android wallets, 11.5% of iOS wallets, and 13% of browser extension wallets still support this risky signing method, which could be abused by adversaries to drain a user’s account.

Top Gainers/Losers

  • MetaMask once again secured the #1 position across all three platforms.
  • OKX Extension jumped 10 positions to #2, achieving a remarkable +16.9 point improvement.
  • Phantom for Android made a massive leap, climbing 10 positions to #3 with a +19.5 point score increase.
  • Unstoppable Wallet for Android experienced the largest decline, dropping 7 positions with a -13.3 point score decrease.
  • Gem for iOS: was the top mover on Apple devices, climbing 10 positions to enter the top 20.

Why Phantom and OKX Led the Pack

Both Phantom (Android) and OKX (Extension) achieved exceptional security score improvements this release, each climbing 10 ranking positions. Key enhancements include:

  • Phishing protection, with both wallets implementing alerts for known malicious blockchain addresses. Phantom additionally introduced phishing dApp detection, expanding coverage beyond blockchain addresses to include malicious websites.
  • Access control, implementing an automatic wallet lock for idle sessions. Phantom additionally improved seed phrase authentication.
  • Improved intent verification (OKX), with full EIP-712 object parsing, clearer display of method data to be signed, and invalid address checksum detection

Security Updates in Numbers

FeatureExtensionsiOSAndroid
Transaction Simulation60.9% (+8.7%)53.8% (+5.4%)42.9% (-0.9%)
Malicious Address Detection39.1% (+17.4%)34.6% (+10.4%)35.7% (+10.7%)
Malicious DApp Detection30.4% (+4.3%)15.4% (-2.8%)10.7% (-8.0%)
eth_sign Disabled13% (-4.3%)11.5% (-0.6%)14.3% (-4.5%)

Browser extensions showed the greatest overall improvement in security scores, with an average increase of +3.38 points, followed by iOS (+2.97 points) and Android (+2.13 points).

Wallets Not Evaluated in This Testing Round

In this round, we evaluated 23 extension wallets, 26 iOS wallets, and all 28 Android wallets. Wallets that hadn’t released new versions or presented exceptional difficulties (geofenced downloads, unstable backends, or broken onboarding) were excluded from this cycle.

  • Ambire (iOS): The iOS application is currently not available for public download.
  • AlphaWallet (Mobile): The mobile application is no longer available for download via standard app stores.
  • Taho (Extension): The extension was last updated on April 18, 2025. Given the wallet ranking baseline of March 26, 2025, the lack of recent development falls outside our threshold for freshness.
  • BlockWallet: The project has ceased operations.

⚠️ BlockWallet Sunset Notice

“BlockWallet will sunset on January 1, 2026. Continuing the project without compromising its core values is no longer possible under the current regulatory conditions. Therefore, the project will be discontinued as of 2026.01.01.

Note that we are open to incorporating newly released and newly discovered wallets into future testing rounds and rankings.

Explore the full ranking, share it with your community, and collaborate with us to strengthen the Web3 ecosystem.

See the Updated Ranking

The Wallet Security Ranking Changelog

We publish Wallet Security Rankings through structured testing rounds conducted at least twice per year. Each round evaluates selected wallet versions against thousands of security checks, followed by a rigorous pair-review process to verify results.

However, ahead of the third edition, we chose to release preliminary results prior to Devcon, before all double-checks were fully finalized. This change in our release workflow highlighted the need for a public Changelog to clearly document subsequent adjustments. The new Changelog provides a transparent record of these changes, explaining why rankings may change even when wallet versions do not.

Explore the full changelog