Malicious contract question

Is it possible to have signed a malicious contract in trezor suite without noticing?

I am paranoid that I have signed something without being aware that will drain my wallet.

My situation:

I have only ever used my Trezor device with Trezor Suite directly. I have never connected my device to metamask or any other third party.

I have some airdropped tokens in my ETH account but I have never interacted with them.

Am I safe?

Hi. Any advice would be greatly appreciate to put my mind at ease :smiley: thanks

Generally you can only make token approvals on Trezor Suite using either the trade (when interacting with a DEX smart contract) or staking features. However, if you want to verify your current token approvals the Etherscan block explorer has a Token Approval Checker, which can even create transactions for you that revoke previous approvals.

More information about scam tokens is available from our article Airdrop Scam Tokens in Trezor Suite. Keep in mind that being airdropped tokens is not a sign of having interacted with anything malicious as all of your activity on chain is public and anyone can send transactions to you.