How to keep your cryptocurrency safe
- Thread starter troubled soul
- Start date
- Status
There is merit for such type of service. But if I'm willing to give a signature on my accounts in order to be able to recover it if I lose the private key... I will go with a full custodial solution right away because there is no extra benefit for the absurd price. In my opinion having multi-signature in an account is only worth the hassle for pooled funds/DAO treasuries (for example my company's wallet requires 4 out of 6 signatures from︀ the partners to move funds)
I'm a Windows user on desktop, had AVG in 1999 in Win98 (R.I.P.) for the last time and never ever installed an antivirus since - not a single problem whatsoever
antivirus is like most insurance products - powered by fear of practically non-existent threat and FOMO
antivirus is like most insurance products - powered by fear of practically non-existent threat and FOMO
Careful eyes can protect you, but in times were its getting more and more easy to launch pretty sophisticated attacks and sideloading some small btc stealer is pretty easy.
There are more than enough ways with spoofed domains, hacked accounts and so on. When billion dollar companies with EDRs and what they all have still manage to get infiltrated, someone in a busy business day can fall vicitim to︀ the same thing.
Example:
And a lot of ways with Word documents with macros etc.︁
Best bet: Clean/empty device + HW wallet or protected pc would be my go to.︂ Additional protection doesnt hurt and the tracking that happens is negligible to that of what︃ a stock windows system with its tools & browsers does. Im not saying some should︄ use an AV and then be blind, go download cracks or whatever file looks interesting.︅ Just keep those careful eyes and have a backup.
Also Windows own AV is enabled︆ by default on Win10 & 11 unless you disable it in the regedit, group policy︇ or with Defender Control.
There are more than enough ways with spoofed domains, hacked accounts and so on. When billion dollar companies with EDRs and what they all have still manage to get infiltrated, someone in a busy business day can fall vicitim to︀ the same thing.
Example:
And a lot of ways with Word documents with macros etc.︁
Best bet: Clean/empty device + HW wallet or protected pc would be my go to.︂ Additional protection doesnt hurt and the tracking that happens is negligible to that of what︃ a stock windows system with its tools & browsers does. Im not saying some should︄ use an AV and then be blind, go download cracks or whatever file looks interesting.︅ Just keep those careful eyes and have a backup.
Also Windows own AV is enabled︆ by default on Win10 & 11 unless you disable it in the regedit, group policy︇ or with Defender Control.
That's why I said "If you don't download random stuff you see/︅get" because I'm aware of such types of session tokens stealing methods, I even︆ wrote an article explaining that in order to share it when I see som random︇ crypto "influencer" who always says "use 2fa if you don't want to get hacked" like︈ if that is the only thing that matter basically to tell them "news flag: even︉ with 2fa, if someone gets a session token there is nothing you can do and︊ it's more important what you do after that"...
But if you want to know how︋ "different" I manage my keys against what many people in the crypto space say: I︌ keep all my mnemonic phrases backups in the cloud 😉
But if you want to know how︋ "different" I manage my keys against what many people in the crypto space say: I︌ keep all my mnemonic phrases backups in the cloud 😉
What is the best method to store/secure Hardware Wallet Recovery Seeds ?
What would you suggest for this ?
@JohnnyDoe
What would you suggest for this ?
@JohnnyDoe
Yeah 2FA wont protect︁ you from session/token stealer, which nearly all RATs/Malwares and so on got. 2FA is good︂ just in case the credentials got leaked but for that you could use a PW︃ for each website and then you should be good. There are a lot of ifs︄ and so on. A basic "noob" user is still better of with an AV or︅ the setup I mentioned.
That wont work with me. Not really any advantage compared to︆ having Electrum or so on, on the PC.
There are a lot of places to︇ hide such a paper. For extra security change a few words that you can memorize︈ like the beginning & ending.
That wont work with me. Not really any advantage compared to︆ having Electrum or so on, on the PC.
There are a lot of places to︇ hide such a paper. For extra security change a few words that you can memorize︈ like the beginning & ending.
No joking, have been doing it for many years without issues and yet I have never lost a single key. I developed my own shamir secret sharing tool and I break my seed phrases into different pieces which they are encrypted and saved on different clouds. Cryptocurrencies were made in order to not trust paper money... Yet I find it hilarious that we still use a piece of paper to back them up (the keys).
nice... so if (god forbid) you'll get hit by a bus tomorrow your wife or whoever you care about and who is supposed to inherit your wealth will have an interesting quest ahead... not only gathering the shamir chunks but also looking for your software, source code to compile or documentation to your proprietary︀ algorithm
who said that?
who said that?
I already thought about that, pieces are also on her clouds encrypted with her own generated password and she has an app on her phone that takes care of putting all the pieces together once she gets them (at the beginning I thought about creating︀ a small device with a raspberry pi but then I felt it was overkill, her︁ phone is already pretty secure thanks to the device's own security process).
In my opinion︂ using encrypted pieces on devices is actually the future, but the crypto space still can't︃ handle it and I think it's because the UI/UX is not that easy yet unless︄ you create your own solution for your own needs
Satoshi in the Bitcoin whitepaper when he presented the idea to avoid using︅ third party financial institutions because of trust issues, paper money is a banknote made by︆ a financial institution.
In my opinion︂ using encrypted pieces on devices is actually the future, but the crypto space still can't︃ handle it and I think it's because the UI/UX is not that easy yet unless︄ you create your own solution for your own needs
Satoshi in the Bitcoin whitepaper when he presented the idea to avoid using︅ third party financial institutions because of trust issues, paper money is a banknote made by︆ a financial institution.
hopefully her phone will not break, you don't travel together etc. - in a way I︀ respect your effort but this is the wrong case where to get creative, good luck︁ anyways
I don't see any connection with "paper form"︄ of the backup but whatever...
I don't see any connection with "paper form"︄ of the backup but whatever...
I was wondering why you guys won't trust a Ledger device or Trezor device with 1 million US$ as an example?
If her phone breaks, she can get a new one and get everything done with the new one... that's the whole point of this: Not having a single point of failure. It's a little creative, but hardware wallets like Trezor and Ledger knows this is the proper way to do it and the reason they already implement it (Ledger with her latest service and Trezor doing the separation︀ of the pieces itself)
I didn't say they are connected, I said︂ (and I quote myself): "Cryptocurrencies were made in order to not trust paper money...︃ Yet I find it hilarious that we still use a piece of paper to back︄ them up (the keys)", basically that I find hilarious that we use simple paper to︅ back up the keys of something it was created to not trust paper money
I use both, I think︇ people just like to overreact with reading headlines like "trezor device hacked" and "ledger deploys︈ new firmware that can extract your seed phrase" because they don't know how it works︉
I didn't say they are connected, I said︂ (and I quote myself): "Cryptocurrencies were made in order to not trust paper money...︃ Yet I find it hilarious that we still use a piece of paper to back︄ them up (the keys)", basically that I find hilarious that we use simple paper to︅ back up the keys of something it was created to not trust paper money
I use both, I think︇ people just like to overreact with reading headlines like "trezor device hacked" and "ledger deploys︈ new firmware that can extract your seed phrase" because they don't know how it works︉
- Status