Always have a decoy wallet, in this wallet you must reserve a amount that you are willing to lose (something like US$3 ~ 50) when testing a new wallet just downloaded, you enter this test decoy seedphrase, after all, these fake wallets usually have a malicious code to drain wallets immediately as soon as a wallet with amount is imported, so if your decoy wallet is drained, you will know right away that it is a scam wallet.
Should we use our funds to test for fake or malicious wallet? The points you stated above may be right to some extent but to be frank, you have to make sure you are downloading these wallets apps from the right source, which everyone knows as their official web. Play store, can no longer be trusted so even if you are downloading from Google Play store or other official stores, you should make sure that the website redirects you there. Don't click unknown links to download so as to avoid downloading Trojans or malicious apps.
This way, you don't have to test the authenticity of the wallet with your funds or having to try a decoy just as you stated in your op.
Obviously for someone with experience it sounds unnecessary, but most people don't even understand why an App is in the store, so for the average user, they only know how to go to their app store and download. What is clear is that if you download an App to store money you should follow a security guide. Any Wallet, even a HW, can be compromised. If you use trust as a basis for downloading any software, you are making the first mistake, even if you download a wallet from the same website and follow any of the steps mentioned. Then, testing a wallet with $100 does not offend my knowledge, it strengthens my distrust.
After reading the thread, I had the same question as Hatchi: Why should we use our funds to investigate fake or malicious wallets? Why even a small amount?
Later, Airbin gave a nice explanation in its comments. Although I don't know much about technology, but I have a stupid question on this topic that I want to share with everyone. Sorry if anything is wrong. I don't know how well I will be able to explain my question.
The question was, after receiving this small ($3–$50) amount of funds, how do fake or malicious wallets intend to destroy the wallet? I mean, if they cheat that small amount, those wallets will be under our watch, and we will be careful to manage the wallets. Later they will have no opportunity to cheat.
Again, it may be that the fake wallet is not emptied after importing these small funds. But later, when we trust these wallets and start depositing good amount of money in them, can they start fraud?
Although, I don't have a proper idea about Decoy Wallet, but I got some idea about it by searching on Google and I want to know more about Decoy Wallet.
