# Detects scams 1/2

*Wait, what?* You read that right; this isn't clickbait.

## When you enter a Web3 site, Sentinel3 runs two different analyses and provides a result with a 99.9% scam detection rate proven by 0 customer losses since 01/2023.

## Contrary to popular knowledge, s**imulating/translating transactions is *****not***** scam detection**.

To explain this, here are two examples:

### Example 1

> **Imagine this scenario:** you hold a valuable NFT you're trying to sell. You list it in marketplaces and also message in the trading channel of the project's Discord.
>
> Suddenly, someone DMs you that they're interested in buying it. You negotiate with them and agree on a price and a reputable trading website. *You're excited*; selling this NFT will significantly help your current situation.
>
> You set up the trade and wait patiently for the buyer to execute it. He tells you the site isn't working for him and suggests using another site. *You're excited*, so you agree.
>
> He sends you the link for the trade on the site. Something feels off, but **you're armed with a Web3 security app that simulates/translates transactions, and you feel safe**. Once you make this trade, you'll get enough money to pay off some debts or bills.
>
> You press the button to give approval to your NFT, and your Web3 security app gives you a translation:

<figure><img src="https://530092188-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FODbp2MBRGy4clADmHLmw%2Fuploads%2FIin7q4VH0kpb7Jm6tQZU%2FCleanShot%202023-03-16%20at%2023.22.58.png?alt=media&#x26;token=1ac84584-5c2d-4a16-b7aa-46ec60cb8df9" alt=""><figcaption></figcaption></figure>

> The app tells you to ensure this isn't from a scam site. You worry, but you remember that you saw the same translation for other sites that you needed to give approval to, for example, marketplaces and staking sites—**a pattern of false safety**.
>
> You decide to move forward with the deal and approve your NFT. While you wait for the transaction to go through, you have a mix of excitement and fear. The transaction is confirmed. Your NFT should leave your wallet in exchange for crypto.
>
> You click on your wallet, waiting for the crypto to appear... but it doesn't. You think that maybe the wallet isn't updating, so you head to a blockchain explorer to verify it.
>
> **Reality hits... and it hits hard**. You gave approval to the NFT, and it left your wallet... **for nothing in return**. The trading site you interacted with was a scam site. The adrenaline in your body leaves you, replaced by pure despair.
>
> You blame yourself. How could you be so stupid? How could you fumble the money this way? After a few minutes of self-loathing, you remember... what about the Web3 security app that was supposed to protect you? Did it mistranslate the transaction?
>
> It didn't. The translation was correct. You gave approval to an NFT. **Because the app only translates transactions, it didn't stop you from doing it**. All it did was tell you to ensure it is not a scam site.

The responsibility of the transaction was 100% on you. **The app gave you a false sense of security**, and you lost your valuable NFT.

**This is one of the most daunting situations for most Web3 users using security apps that simulate/translate transactions.**

Once more:

**Simulating/translating transactions is&#x20;*****not*****&#x20;scam detection**.

[**We've been saying this since we launched**](https://x.com/Kerberus/status/1551628676433051648) and must continue until the end of time. Our conscience requires us to know we did our best to protect all Web3 users, not just Sentinel3 ones.

### Example 2

Take a look at this scam site:

<figure><img src="https://530092188-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FODbp2MBRGy4clADmHLmw%2Fuploads%2FI4TXMEafwF86qsAUFH2U%2Fnotablepepe.com.png?alt=media&#x26;token=047a8200-a085-44fa-8b61-0693877acb13" alt=""><figcaption></figcaption></figure>

It looks pretty simple, doesn't it? It isn't just any scam site.

**The scammer's wallet for this site stole over $1,600,000.**

Take a look at what it attempts to do when interacting with it:

<figure><img src="https://530092188-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FODbp2MBRGy4clADmHLmw%2Fuploads%2FCUaSyRHHAV0DUTvWI7SX%2FCleanShot%202023-03-12%20at%2017.48.38.png?alt=media&#x26;token=b2be4572-13fc-44a0-b0a2-17ca3bd0c3a7" alt=""><figcaption></figcaption></figure>

It doesn't attempt the most common scam transactions (getting approval for your coins/NFTs, listing your NFTs on marketplaces for 0\~ ETH, or asking for a hash signature that can do anything to your wallet). It simply prompts you for a contract interaction they name '*claimRewards*' that asks for 90%\~ of the ETH in your wallet in exchange for... nothing.

This is how other apps simulate/translate this transaction:

<figure><img src="https://530092188-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FODbp2MBRGy4clADmHLmw%2Fuploads%2F9aWWeLRgL4ur4JLkhN6F%2FCleanShot%202023-03-12%20at%2017.38.14.png?alt=media&#x26;token=700f47db-8fba-4187-b2a8-7301e65861c7" alt=""><figcaption></figcaption></figure>

Not very different from what MetaMask would show you. Let's look at a similar scam site and two other app examples:

<figure><img src="https://530092188-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FODbp2MBRGy4clADmHLmw%2Fuploads%2FRVstQSt0OmWIAHP4WFEr%2Fdbac32bd-051d-4626-8580-007118d5a1b9.png?alt=media&#x26;token=00978d51-8294-49f7-8c6c-4a2a178fb1f8" alt=""><figcaption></figcaption></figure>

<figure><img src="https://530092188-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FODbp2MBRGy4clADmHLmw%2Fuploads%2F8NKmceF5gOEuhEQYmrSR%2FCleanShot%202023-03-12%20at%2021.16.35.png?alt=media&#x26;token=fdd200c3-841f-4299-939c-884bfc8a92b3" alt=""><figcaption></figcaption></figure>

<figure><img src="https://530092188-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FODbp2MBRGy4clADmHLmw%2Fuploads%2F6RAVtb21wyOZ2wcLCoFq%2FCleanShot%202023-03-12%20at%2021.29.44.png?alt=media&#x26;token=e541791a-84ba-439d-832e-436d34286ca5" alt=""><figcaption></figcaption></figure>

Both are almost identical. But what does *'Some Risk'* mean? Should you do it or not?

**Security apps that can't determine if a transaction is legit or not state&#x20;*****'Some Risk'*****&#x20;to relieve it of any responsibility.**

**Apps that only simulate/translate transactions put the burden of the decision on you, the user.**

And because they aren't in the business of detecting scams... *they can't be held accountable for not detecting them*.

## Here's what true scam detection by Sentinel3 looks like:

<figure><img src="https://530092188-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FODbp2MBRGy4clADmHLmw%2Fuploads%2FJcTQArYPz3So31HAy5Yc%2FCleanShot%202023-03-14%20at%2004.33.11.gif?alt=media&#x26;token=7f146e54-a59b-4607-bee6-79b49c63a102" alt=""><figcaption></figcaption></figure>

You try to 'mint' on a scam site, and Sentinel3 blocks the malicious transaction.\
Simple and effective.

**The burden of the decision is initially on Sentinel3**. The user can ignore it, but before that, he is presented with a clear warning not to.

New Web3 users don't understand translations because they don't know what they mean. They expect to press a button and get something in return.

**Sentinel3 prevents them from interacting with malicious websites without placing the burden of the decision on them**.