Once the victim tries to authorize the airdropped token in order to exchange it, the victim’s address instantly gets drain off other tokens if they available in the same address. In other words, the hacker will transmit tokens from your wallet to his address without needing any private keys or seeds.
Damn if there is an exploit like this then its the most dangerous one cause the hacker doesnt need the seed phrase or private key in order to move tokens to his wallet.
Thats so scary and somehow I find it hard to believe that an exploit with this method could exist.
3. If you receive a questionable token in you address yet you never participated in any airdrop program, abandon the address and move your tokens to a fresh one. Do not move the suspicious token to an exchange and try to exchange it with the other tokens still in the wallet.
I think its fine as long as you dont transfer those spam tokens somewhere cause its normal that we received some tokens randomly especially thsoe accounts with multiple transactions.