Thanks for all the feedback, that really helped! I have a last question:

Suppose I want to setup a wallet with 1 seed with Sparrow wallet. Now all can just work find. But what has happens now behind the scene in my hacked Sparrow wallet, is that it created a multi sig wallet, a 1-out-of-2 wallet. So I can use my seed just fine, but the hacker now also has access. Now I can validate the receiving address with my jade and it will tell me that it is valid but. Is there a way I can protect myself against this? Can I detect this? I can also imagine that something like this is possible if I create a multisig wallet.

Again, I can check receiving addresses using another software wallet. But is there a way to detect something is wrong without the extra software wallet?