Topic: Anyway to be smart about this? - page 2. (Read 353 times)

First of of the hacker didn't change anything in the wallet and he only drained the valuable coins and left behind the tokens that are not listed any any exchange platforms but they are used to stake in the creator website. And if change the password of the wallet then the owner would not have access to it but since he has not changed it both nof them can use it and the hacker is waiting for the owner of the wallet to deposit funds again so the best way is to withdraw everything from the wallet and abandon the wallet and us another one.

I don't think there's any known solution to your problem, wallets are not such that can be passworded and changed at anytime, it's about the wallet key and once any one has got access to the key phrase then they have an unrestricted access to the wallet but then if you still have access to the wallet, monitor it closely and immediately the period of staking is over, you could be lucky to be the first to initiate a withdrawal from the wallet then you can go create another and not use that wallet anymore.

Whenever you have a wallet holding some good number of assets for you, always safe guard it well enough and avoid linking bit to unknown links pretending to be airdrop so you don't risk your account getting accessed by unauthorized persons.

It is impossible to get the tokens if the wallet is compromised. Hackers use a program that will automatically send whatever is in the wallet. In this case, the token is stake at a platform using the comprised wallet then the token is no longer in the wallet but when you stop staking the token then it will be withdrawn in the wallet and sent to the hacker's wallet right away. If it is possible to contact the platform owner where your friend stakd his token and would like to change the wallet address that the token will be sent when you are going to withdraw the tokens.

I was hoping that you could give us a brief overview of what your friend did to have his wallet compromised. Were the seed phrases or the private key for his wallet revealed to someone, or did he download malicious files through which the hacker gained access to his device and stole the security information for his wallet? If one of the scammers has access to his wallet, it's likely he deployed a malicious script, known as the sweeper bot which drains all assets in the victim's wallet, including those recently deposited, automatically transferring them to the scammer's wallet.

What I see is that the scammer will obtain the APY from the staking that your friend did for one of his tokens. I believe that if you and your friend have sufficient knowledge and have conducted enough research to use Flashbots successfully. It's possible that you can get the staked APY funds successfully. Check out this [Link], intensify your research, and good luck to you. If this does not work, the solution is to completely forget this APY and your friend’s wallet and have him use a new wallet as there are no other solutions.

Well, I hate to break it to you, but once your buddy's wallet got hacked, there's probably no gettin' those staked tokens back.  Hackers can get into anything in that wallet includin staked tokens.  Really sucks, I know. 

Maybe suggest your friend reaches out to wherever they was stakin' those tokens? Could be the platform can help them out somehow.  Long shot I know, but worth a try if they wanna get their tokens back.

If the hacker knows about that token, he can set up a fast bot that enables him to send the token whenever it is available. I do not know what the conditions for staking are, but they are mostly related to the presence of a balance. If there is no balance in your account, then staking has ended.

In general, as long as the private key is known by an unwanted party, it is better to create a new wallet using flashed BIOS with new OS, and if you have a token under any condition (as lacks a gas or any reason), it is better to link it to a fast bot and hope that your bot will be faster.

This wallet is gone, it has been lost, if any amount is deposited to pay for the gas, all the money will be immediately drained.

There is a way to reverse transaction signatures, but for that you will have to pay fees too, so it's not even worth it.

I wish your friend all the best and may he move forward!

That's some scary stuff there. So, we've more than safekeeping our seedphrases to grapple with now and into worrying our already stressed minds about vulnerability that's outside our control. To even think that Metamask was immuned to vulnerable attacks now leaves a panic situation at hand. I thought it's clicking on unverified links that can expose one's wallet. Doing that would be left in the hands of the wallet owner but to be told that it can come down to a situation other than that is really heartbreaking. Notably, as we approach bull rally, cases of this type will continue to overwhelm the crypto space. It's sad.

Sorry to ask, Dr.Bitcoin_Strange, but did you successfully withdraw the tokens to any of your wallets? or were they withdrawn to the hacker's wallet? As per the BNB it is clear, but I'm not sure how should I interpret the first half of the sentence.

The word "also" expresses the idea that all assets ended up in the same place, but that's not what I deduce from the context. Can you clear it? Because if it worked then I don't think what the OP will eventually do, but IMO it could be worth trying.

That exact crypto staking you're talking about may be the reason why your wallet was compromised, if you're in such position, then all you could do is to first identify the kind of wallet you're using, if a custodial wallet or non custodial wallet, then try as much as possible to stop anything that has to do with investment or fund transfer into such wallet and get a new one, watch over what you do on your device, internet connections and downloads made, you're most likely to be the reason for having such attack out of your careless way of handling the use of the wallet.

I heard about a similar situation 2 weeks ago from A Defi platform's Discord server. someone's wallet was drained. and he asked the devs if there is any way to transfer his staking to another wallet. appraently a community manager told him that it is possible but devs need to execute a smart contract for that, he also said that doing that require a lot of time and coding.
I don't know if that is possible in your case, but your best bet to safe the staking is to contact the project platform support where the staking and see if the projects developers can help you in this regard. but most of these Defi projects dev don't bother helping for such situations..

If your friend's wallet (or private key) has been compromised and there is a sweeper bot set up that will automatically send all funds to the hacker's wallet, it is best to just abandon the wallet and create a new, clean one.

I don't know if there is actually a way to beat the bot manually, because in order for your transaction to have priority, you have to either be faster than the bot (which is impossible) or put a higher fee, which will probably be too expensive.


Also, check out my response to a member on a similar issue last year:

When a cryptocurrency wallet was compromised, you have one choice, abandon it.

If you have any cryptocurrency in it, send it to a new wallet that must be created on another device or on that device after you clean it up, reinstall its OS.

If you reuse a compromised wallet, you will lose more money.

Tell your friend to revoke smart contracts but don't reuse that compromised wallet.
how to revoke token approvals
https://etherscan.io/tokenapprovalchecker
https://revoke.cash/
https://app.unrekt.net/

LOL, this is nice and mission impossible. What I was thinking is almost the same as this but not going to involve other people but only him and that's really about monitoring the end of the staking period.

That's all what he has to do but this is a better and more brilliant idea. I think if the period is still quite long then OP's friend with some help of their friends as well can just do the same as this.

Much better if the wallet itself doesn't need more any gas fee or it's actually BNB for which no need to have any deposits which might detect by the API of the hacker.

Before now, this kind of issue had also been experienced by my friend. His wallet got compromised, and every valuable asset in it was moved to an unknown wallet, but there was a token in that hacked wallet that was not yet listed on any exchange (bought from an ICO). I believe it's because the token was not yet listed; that's why the hacker did not move out the token.

My friend wanted to move the token to a new wallet he has created because he knows that when the token gets listed on the exchange, it will be profitable. So, what he actually did was give the wallet phrase to about three friends and ask them to import the wallet on their device. After which, all of them had an agreement that one person among the four of them would send BNB to the wallet, which would serve as a gas fee, while the other three people would initiate a withdrawal after the BNB deposit was successful.

It was like a rescue mission, lol, but

It actually worked like that: the token was successfully withdrawn, and the rest of the left-over BNB also got automatically withdrawn to the hacker's wallet.

@OP, If the staking period of that friend's coin is due, it will be transferred back to the hacked wallet you are talking about, and if the coin is already listed on an exchange and it's a valuable coin, there is a high chance that it will be withdrawn to the hacker's wallet even before you think of sending it out. But if it is not done by the hacker before you try, I will advise you to try the technique my friends used. If it's an Ethereum-based coin, use an ETH deposit for the fee, but if it's a BNB-based coin, you can deposit BNB for the fee.

I don’t know much about staking but, isn’t the stake amount still in the wallet even if the wallet is compromised because the token is restricted from been moved. Then if the rewards  ( APY) which I believe should be spendable then the owner of the wallet both can have access to withdraw that funds if only it is not sweeper bot that is on that wallet. If it is sweeper bot then immediately the funds enter it will automatically be withdrawn to the hackers address but if it is not probably the hacker just has the private key then it will be withdrawn by who saw it first. But basically the hackers uses sweeper bot so I don’t think the owner can have anything from that wallet again

There was a recent vulnerability with Web3 apps, metamask including some Hardware wallets which might have led to this downfall of your friend. I am really sorry for him but you don't want to do anything now with that wallet. It's already gone. If you deposit ETH to withdraw the stake, it will be automatically transferred to a hacker wallet. Forget it now.

It's strange that I have never seen anyone ask me this question before until now, and I even try finding answers on here but with no luck.

A friend's crypto wallet was drained and there is a particular token he is staking, using this wallet, he already abandoned the crypto wallet but I am curious if there is anything I can do to help him?

What can someone do if a crypto wallet is compromised but the wallet owner is staking on such wallet still? The APY is coming in but we both curious how possible it can be to get the staked token after the period of staking is over, without ending with the hacker or whatever is fit for the drainer to be called.