Hello,
I'm being asked to show or prove my wallet for a business deal. It's basically a show of good faith that I have funds available. I generally think the person is legit and not a scam or anything but at the same time wanted to obviously protect my wallet.
They're asking me to sign a message using the sign/verify function. Is there any inherent danger to using this function with a trezor wallet?
They're just asking me to send a message like "hi, 3/17/2024".
I found a couple threads online about how people are being scammed by asking to sign messages although it seems like the details are a bit different.
https://www.reddit.com/r/ethereum/comments/yohci6/signed_a_scam_message_and_eth_transfer_from_my/
https://medium.com/mycrypto/bad-actors-abusing-erc20-approval-to-steal-your-tokens-c0407b7f7c7c
I guess my question is I'm not sure exactly what signing a message is doing. I always assumed it was just a way to broadcast a message to the network and it didn't actually allow for sending a transaction. If you type the wrong thing or sign a message with a transaction hash does it have the power to compromise or send a transaction out of your wallet?
If they ask me to sign a message with a transaction hash is that inherently dangerous?
Is signing a message with just today's date dangerous?
Is there a difference between signing a message with bitcoin and an ERC20 token (USDT)?