[Drip33]

That requires some sort of malware (or similar) installed on the device/software creating the transactions which has access to the private key to leak it via some predetermined way and is different from what I thought you were saying that a pre-signed transaction could directly send funds to an unwanted address without you knowing by inspecting the signed transaction itself before broadcasting it.

Regardless, whatever job you have where what you've said is a legitimate threat model sounds like the most interesting job in the space.

[RL_Quine]

Oh no, inspecting the transaction means you know where the money goes, absolutely. There's just no assurance that it's all you need to be safe. Given the amount of absurdity going on in this industry you have to be very sure of things like hardware wallets. It would take zero effort to replace a Bitcoin hardware wallet with one that is backdoored, so it's a very real threat to many companies, if they know it or not.