Question 1:
Address spoofing and clipboard hijacking are a real threat (source).
The safest way would be to check each character and make sure they are the same. You can also initiate a transaction with a small amount and check on the blockchain if the wallet received it.
Another way would be to use a simple tool I created after a friend lost some of his funds.
The tool is called “Wallet Inspector”. You can use it on the web or on iOS. It generates a unique 6-digit security code for wallet addresses, providing a quick way to verify address integrity.
If the codes match, you can be confident that the address hasn’t been tampered with.
Question 2:
As for why exchanges don’t implement better security measures, it’s a complex issue. Many exchanges already have various security features in place, but they often have to balance security with user convenience.
That said, some exchanges are implementing features like address whitelisting and mandatory waiting periods for new addresses.
