What to do if hackers attacked your crypto wallet?
Since it’s already happened there is not much you can do.
Imagine that you’re entering your wallet and seeing no coins and several transactions to unknown addresses. That means hackers attacked your crypto wallet.
Due to the anonymous nature of cryptocurrency ‘ownership’ is determined by whoever holds the codes for it. So if it’s happened, in majority cases, it can’t be recovered. You may track the address of the last wallet but it will give you nothing.
Though if you kept your coins at a crypto exchange wallet and that exchange was hacked, there is a possibility that some kind of compensation will follow. The best thing you can do to protect your wallet is to be aware of possible threats and use your wallet correctly.
How can hackers steal cryptos?
The most famous type of fraud is phishing. Hackers may sent you a fake email of your wallet service, containing a fake URL, which may differ by one or several letters from the real URL of your wallet service or hackers even may redirect the right URL to fake URL when you’re entering the online wallet. The latest big phishing scam occurred and in total $150,000 worth of Ethereum was stolen in a DNS hack.
Hackers also use simple human mistakes, such as keeping private keys in mail, exposing the keys at public, using public unprotected networks that allows hackers to detect all the information and find the password.
Big amounts of tokens and large transactions may attract hackers to hack exactly your wallet.
Where should be the keys kept, then?
The answer is that offline is better than online.
The most occurred mistake is to keep crypto wallet keys in email, Google Drive or Dropbox, or any notes app in your smartphone. These are the first places hackers usually try to get in. In order to save your coins you may record it to an USB stick, or just write it down and keep it in your drawer.
What to do if you lose your keys?
It depends on the type of wallet you use.
For most popular software wallets, it’s ok to know only your backup phrase, a mnemonic phrase, consisting of 12 words. If you forget your pin, you should just delete the app, install it again using the backup phrase, and create a new pin.
There are wallets that provide access via Touch/Face ID instead of pin-codes. The good thing about apps like this is that the only thing you need to know is a backup phrase. The bad thing is that once you’ve lost the backup phrase, you’ve lost an access to your wallet. In this case, technology is helpless.
Your wallet sets a new address every time you sign in – is it ok?
Yes, it’s for the wallet safety.
Du to this method every time you send or receive funds, a new address will be generated for your wallet, that’s a useful option, because it makes your transactions harder to track, and impossible for hackers to calculate the actual amount of money you keep at your wallet. If you need to transfer a big amount of coins you better split it to several transactions.
Is there an ideal wallet type with the best security level?
The answer is no.
All wallets differ by online and offline types, and the security mechanisms differ respectively.
The most existing online cloud wallets, or so called ‘hot’ wallets, use two-factor authentication, in case hackers try to enter your email. ‘Warm’ wallets, the ones that you install as a software to your computer, or as an app to you smartphone, use 12-word backup phrase and pin-codes. ‘Cold’ wallets are hardware ones, that are located at a USB stick or a special gadget — it seems like the most secure way so far, but, according to one of the latest reports, even hardware wallets are not reliable.
Whatever kind of wallet you use, you should make sure that your laptop or smartphone doesn’t contain malware.