Topic: Anyway to be smart about this? (Read 353 times)

Trustwallet is also called a Multi-Wallet or multi chain wallet because it can be used for all crypto assets including Bitcoin. There are many supported blockchain networks so it will be very easy to use them.
But a Bitcoin-only wallet like electrum seems to be better because it only focuses on Bitcoin, and it's also open source.

Unless there is drainer that instantly withdraws whatever amount comes into your friend's wallet, solution is easy as unstaking the staked token and move it to a new wallet.

Well, I think it's a matter of being politically correct or legalistic. As for a wallet being tagged multi-crypto or multi–coin, it passes the same message as a crypto wallet. Since we all know that Bitcoin is the only coin that isn't an alt or referred to as crypto, there shouldn't be any conflict of interest. The point of interest in my earlier observation is so newbies don't mistake any wallet that's solely for Bitcoin as crypto wallet or vice versa. By the way, most crypto wallets now have Bitcoin addresses enabled on them. Every dev wants to court the friendship of Bitcoin.

What are you talking about, read the OP well before commenting. According to the OP, the wallet was compromised and the hacker has already emptied the wallet. The problem here is that the owner of the wallet has a token that he staked and the hacker cannot move it yet because staked funds are locked, so OP now wants to know if there is a way to stop the hacker from moving the staked coins and the accrued yield once it is released.
Wouldn't the most appropriate term be a multi-coin/multi-crypto wallet.

But of course, it's not Bitcoin being discussed there. However, the scenario can still wipe off one's Bitcoin in that same wallet with other alts if it's compromised. I want to believe you know there's something called crypto wallet – a wallet that contains various alts and Bitcoin too. We've many of them. A very popular one is Trust Wallet, just to mention but one, which can also be used for staking and all that.

A wallet specifically for Bitcoin alone is called a Bitcoin wallet while those that contain more cryptos are called crypto wallets.

Im not pretty sure they got the keys, since if they have the keys for the wallet, they would have transfer the amount for the transfer but instead what they are doing is wait for us to send a certain amount that will automatically send it to their desired wallet, although the exact reason for this is you have connected you're wallet to a fake site and from their you have given them permission to transfer the funds , but maybe they only want us to send funds for them, to save time, but maybe if the wallet has millions they maybe open the wallet themselves.

I have not tried this one that has some stake but I have tried the trick to make a ready transaction to then send a small amount for the gas fee, in this way, you will be the one to make the first transaction since I think the automation of the drainer/hacker has some seconds delay before it do the task, and it works from my side, I have done this trick twice, and works well, always send an exact gas for your transaction, and click the transfer or send to your wallet once you have initiated the gas for the compromised wallet, hope this will do the trick
note: don't ever send an amount of funds if you will not do a transaction, because it will help the hacker transfer your account
I hope this will help you with your problem.

Apparently, it ain’t Bitcoin that is being discussed here as, I don’t know of any Bitcoin wallet that allows you to stake your coin. It’s some altcoin been discussed and just anything could go wrong with altcoins I tell you.

Though, it’s the first time I’m getting to know about this and the chances of recovery leave me with wide mouths. Like, even when it ain’t your fault, even when you’ve got your security loopholes tightened and even in the phase of discovering a compromise, you still don’t get to save your staked coins, that’s just as bad as it gets.

Am seeing suggestions from other comments and I hope your friend gets to try that. The 3 parties thing, sending of gas fee in some alt and simultaneous withdrawal. Just hope it doesn’t get worst and I don’t hope to find myself in similar position.

The only way you can protect yourself in similar cases is to understand how your wallet can be compromised, maybe what happened is not totally bad (sorry for your friend's loss). Now you can understand what exactly happened and when he did that mistake leading his wallet to be drained and compromised.
Any little mistake could be the reason of this case, I don't know which wallet you are referring to, because every wallet has different systems of functioning and also the devices they support. Since you talked about staking I may suggest that it's that smart contract between your wallet and that token who lead to the compromise


Personally, I had a similar experience [1] with MetaMask wallet where my wallet got hacked and drained instantly. The solution unfortunately was abandoning it too.

[1] : https://bitcointalksearch.org/topic/hacked-wallet-how-is-this-even-possible-5465856

The hacker already compromised the wallet and stole the keys, so the hacker is in control of the wallet and has moved the funds out of the wallet, OP is talking about withdrawing funds from staking he was doing in that wallet, though i don't think it is possible because the hacker must have set up a sweeper bot to move any funds that enters that wallet and it would definitely be faster than an human action.

Having said that, mind you that passwords only protect your wallet file when it is in your device, if an attacker has your keys or seed phrase, they would import it in their own device and set any password of their own choice.

This works because the hacker don't use the automatically sending trick on the wallet already, if not, once the BNB entered the wallet it will automatically be moved into the hackers private wallet, there won't be enough time to move your tokens.

If the recovery seed is lost to a random person who have not much skills with crypto wallet you can also move the token out, I guess that's why your pals are able to move the token, OP should try moving the token out by sending $1 worth of BNB to the wallet, just to see what will happen, if the BNB also vanish in seconds then the whole wallet is compromised with the staked tokens.

No the tokens were moved in the a smart contract when you do staking. So technically its not on the wallet, probably the sweeper bots only able to locate useful tokens on the wallet itself. Also probably best guess is valuable or high amount before it stole something. This hacker might not be able to see yet the staking cause if he has the private key he can access wallet and check for staking contracts using tools such as debank, defi, and other ones to see if the victim got more valuable assets.

With the little knowledge I had about staking in meta mask, I believe that any amount you stake will be invisible in your wallet balance and if Hackers move your fund from the already existing coin in your wallet, they will not know that you have a staking farm dat is yealding you coin somewhere. If the key of the wallet is still available what the person should do.
1. Download another DEX wallet
2. Enter the seed phrase of the old wallet maybe from that same phone or another
3. Harvest the earn coin being your profit for the investment
4. Unstake the total number of coin which is pear together for example, bitcoin/usdt pear.
5. Swap all to either usdt or bnb and send to the new downloaded wallet.

Usually this happens due to connecting staking with suspicious or phishing websites. So, because APY stores wallet addresses, make sure you don't use this wallet again. The problem with staking is that the returns or APY keep rolling in, but if the wallet is in the wrong hands, I'm afraid it will be a windfall for those pesky hackers. this means, they just sit back and watch the profits being made.

As suggested by others, the only way to be smart about this is to avoid using the wallet anymore and depositing any funds while trying to withdraw the stacked funds because anything you deposit in that wallet will be gone since it's compromised and is probably still in the control of the hacker. So a wise decision would be to abandon it instead of trying to fight the situation because that's going to cost your friend more money uselessly.

Unfortunately, the cryptocurrency industry is full of hackers and attackers like these who are always waiting for the slightest opportunity to attack the wallets of vulnerable users and steal their hard-earned funds while leaving them no choice but to regret choosing cryptocurrencies for use or investment purposes.

Passwords are only useful on a device a wallet is on. Once the passphrases are imported on another device, whether it's passworded by the original owner or not the new owner can assess the wallet. The main thing when it comes to wallets is the passphrase. Once a criminal gets a hold of the passphrase, it's gone. They become the new owner.

Thanks for the explanation

Well, it's great in that case. Other members suggested to forget about OP's wallet and the  tokens staked there, but if it worked for you he should at least try to rescue them.

He said that they'll be worthy when they are listed, so I don't think that losing the gas will be a problem for him.

@Porfirii, I was not the real victim of what I said; it happened to a close friend of mine who is also a crypto enthusiast.

Regarding your question, yes, the token was successfully withdrawn to another wallet (a new wallet).

The gas fee that was required to withdraw that token was about $0.2 worth of BNB, but what was deposited was almost $5 worth of BNB. After the deposit arrived, each of those friends who got the wallet imported to their phone immediately initiated a withdrawal for that particular token, which was intended to be withdrawn from that hacked wallet.

Successfully, the intended token was withdrawn to a new wallet, but the $4.8 (in BNB) unspent fee quickly went to the hacker's wallet.

The wallet is gone, that is all i can say about it, one of the vulnerabilities with some web3 platforms have left all this behind for users to battle with, and that is why I always advise against connecting your main wallet to any platform for either yield farming or staking.
The wallet is now under watch and even the hackers may even be more proactive and can monitor that staking to the point that it is mature for withdrawal and before you know it he ends the contract and walks away with all the money in the wallet Moving seems to be the best option right now for the mate.

If he still has access to that compromised wallet, he could send it but if not, he could do nothing about it and lose his entire money. Because I was not sure if the exchange would help in such a scenario as it was our fault. I could really imagine that even how careful we are, this would possibly happen to us. That is why I don't try staking nor do I hold funds on exchanges because we have a very small chance(to nothing) to retrieve our funds if the situation happens like this. It is really disappointing because hacking is still on massive growth and we never know, any time we are their victim.

First of of the hacker didn't change anything in the wallet and he only drained the valuable coins and left behind the tokens that are not listed any any exchange platforms but they are used to stake in the creator website. And if change the password of the wallet then the owner would not have access to it but since he has not changed it both nof them can use it and the hacker is waiting for the owner of the wallet to deposit funds again so the best way is to withdraw everything from the wallet and abandon the wallet and us another one.

I don't think there's any known solution to your problem, wallets are not such that can be passworded and changed at anytime, it's about the wallet key and once any one has got access to the key phrase then they have an unrestricted access to the wallet but then if you still have access to the wallet, monitor it closely and immediately the period of staking is over, you could be lucky to be the first to initiate a withdrawal from the wallet then you can go create another and not use that wallet anymore.

Whenever you have a wallet holding some good number of assets for you, always safe guard it well enough and avoid linking bit to unknown links pretending to be airdrop so you don't risk your account getting accessed by unauthorized persons.

It is impossible to get the tokens if the wallet is compromised. Hackers use a program that will automatically send whatever is in the wallet. In this case, the token is stake at a platform using the comprised wallet then the token is no longer in the wallet but when you stop staking the token then it will be withdrawn in the wallet and sent to the hacker's wallet right away. If it is possible to contact the platform owner where your friend stakd his token and would like to change the wallet address that the token will be sent when you are going to withdraw the tokens.

I was hoping that you could give us a brief overview of what your friend did to have his wallet compromised. Were the seed phrases or the private key for his wallet revealed to someone, or did he download malicious files through which the hacker gained access to his device and stole the security information for his wallet? If one of the scammers has access to his wallet, it's likely he deployed a malicious script, known as the sweeper bot which drains all assets in the victim's wallet, including those recently deposited, automatically transferring them to the scammer's wallet.

What I see is that the scammer will obtain the APY from the staking that your friend did for one of his tokens. I believe that if you and your friend have sufficient knowledge and have conducted enough research to use Flashbots successfully. It's possible that you can get the staked APY funds successfully. Check out this [Link], intensify your research, and good luck to you. If this does not work, the solution is to completely forget this APY and your friend’s wallet and have him use a new wallet as there are no other solutions.

Well, I hate to break it to you, but once your buddy's wallet got hacked, there's probably no gettin' those staked tokens back.  Hackers can get into anything in that wallet includin staked tokens.  Really sucks, I know. 

Maybe suggest your friend reaches out to wherever they was stakin' those tokens? Could be the platform can help them out somehow.  Long shot I know, but worth a try if they wanna get their tokens back.

If the hacker knows about that token, he can set up a fast bot that enables him to send the token whenever it is available. I do not know what the conditions for staking are, but they are mostly related to the presence of a balance. If there is no balance in your account, then staking has ended.

In general, as long as the private key is known by an unwanted party, it is better to create a new wallet using flashed BIOS with new OS, and if you have a token under any condition (as lacks a gas or any reason), it is better to link it to a fast bot and hope that your bot will be faster.

This wallet is gone, it has been lost, if any amount is deposited to pay for the gas, all the money will be immediately drained.

There is a way to reverse transaction signatures, but for that you will have to pay fees too, so it's not even worth it.

I wish your friend all the best and may he move forward!

That's some scary stuff there. So, we've more than safekeeping our seedphrases to grapple with now and into worrying our already stressed minds about vulnerability that's outside our control. To even think that Metamask was immuned to vulnerable attacks now leaves a panic situation at hand. I thought it's clicking on unverified links that can expose one's wallet. Doing that would be left in the hands of the wallet owner but to be told that it can come down to a situation other than that is really heartbreaking. Notably, as we approach bull rally, cases of this type will continue to overwhelm the crypto space. It's sad.

Sorry to ask, Dr.Bitcoin_Strange, but did you successfully withdraw the tokens to any of your wallets? or were they withdrawn to the hacker's wallet? As per the BNB it is clear, but I'm not sure how should I interpret the first half of the sentence.

The word "also" expresses the idea that all assets ended up in the same place, but that's not what I deduce from the context. Can you clear it? Because if it worked then I don't think what the OP will eventually do, but IMO it could be worth trying.

That exact crypto staking you're talking about may be the reason why your wallet was compromised, if you're in such position, then all you could do is to first identify the kind of wallet you're using, if a custodial wallet or non custodial wallet, then try as much as possible to stop anything that has to do with investment or fund transfer into such wallet and get a new one, watch over what you do on your device, internet connections and downloads made, you're most likely to be the reason for having such attack out of your careless way of handling the use of the wallet.

I heard about a similar situation 2 weeks ago from A Defi platform's Discord server. someone's wallet was drained. and he asked the devs if there is any way to transfer his staking to another wallet. appraently a community manager told him that it is possible but devs need to execute a smart contract for that, he also said that doing that require a lot of time and coding.
I don't know if that is possible in your case, but your best bet to safe the staking is to contact the project platform support where the staking and see if the projects developers can help you in this regard. but most of these Defi projects dev don't bother helping for such situations..

If your friend's wallet (or private key) has been compromised and there is a sweeper bot set up that will automatically send all funds to the hacker's wallet, it is best to just abandon the wallet and create a new, clean one.

I don't know if there is actually a way to beat the bot manually, because in order for your transaction to have priority, you have to either be faster than the bot (which is impossible) or put a higher fee, which will probably be too expensive.


Also, check out my response to a member on a similar issue last year:

When a cryptocurrency wallet was compromised, you have one choice, abandon it.

If you have any cryptocurrency in it, send it to a new wallet that must be created on another device or on that device after you clean it up, reinstall its OS.

If you reuse a compromised wallet, you will lose more money.

Tell your friend to revoke smart contracts but don't reuse that compromised wallet.
how to revoke token approvals
https://etherscan.io/tokenapprovalchecker
https://revoke.cash/
https://app.unrekt.net/

LOL, this is nice and mission impossible. What I was thinking is almost the same as this but not going to involve other people but only him and that's really about monitoring the end of the staking period.

That's all what he has to do but this is a better and more brilliant idea. I think if the period is still quite long then OP's friend with some help of their friends as well can just do the same as this.

Much better if the wallet itself doesn't need more any gas fee or it's actually BNB for which no need to have any deposits which might detect by the API of the hacker.

Before now, this kind of issue had also been experienced by my friend. His wallet got compromised, and every valuable asset in it was moved to an unknown wallet, but there was a token in that hacked wallet that was not yet listed on any exchange (bought from an ICO). I believe it's because the token was not yet listed; that's why the hacker did not move out the token.

My friend wanted to move the token to a new wallet he has created because he knows that when the token gets listed on the exchange, it will be profitable. So, what he actually did was give the wallet phrase to about three friends and ask them to import the wallet on their device. After which, all of them had an agreement that one person among the four of them would send BNB to the wallet, which would serve as a gas fee, while the other three people would initiate a withdrawal after the BNB deposit was successful.

It was like a rescue mission, lol, but

It actually worked like that: the token was successfully withdrawn, and the rest of the left-over BNB also got automatically withdrawn to the hacker's wallet.

@OP, If the staking period of that friend's coin is due, it will be transferred back to the hacked wallet you are talking about, and if the coin is already listed on an exchange and it's a valuable coin, there is a high chance that it will be withdrawn to the hacker's wallet even before you think of sending it out. But if it is not done by the hacker before you try, I will advise you to try the technique my friends used. If it's an Ethereum-based coin, use an ETH deposit for the fee, but if it's a BNB-based coin, you can deposit BNB for the fee.

I don’t know much about staking but, isn’t the stake amount still in the wallet even if the wallet is compromised because the token is restricted from been moved. Then if the rewards  ( APY) which I believe should be spendable then the owner of the wallet both can have access to withdraw that funds if only it is not sweeper bot that is on that wallet. If it is sweeper bot then immediately the funds enter it will automatically be withdrawn to the hackers address but if it is not probably the hacker just has the private key then it will be withdrawn by who saw it first. But basically the hackers uses sweeper bot so I don’t think the owner can have anything from that wallet again

There was a recent vulnerability with Web3 apps, metamask including some Hardware wallets which might have led to this downfall of your friend. I am really sorry for him but you don't want to do anything now with that wallet. It's already gone. If you deposit ETH to withdraw the stake, it will be automatically transferred to a hacker wallet. Forget it now.

It's strange that I have never seen anyone ask me this question before until now, and I even try finding answers on here but with no luck.

A friend's crypto wallet was drained and there is a particular token he is staking, using this wallet, he already abandoned the crypto wallet but I am curious if there is anything I can do to help him?

What can someone do if a crypto wallet is compromised but the wallet owner is staking on such wallet still? The APY is coming in but we both curious how possible it can be to get the staked token after the period of staking is over, without ending with the hacker or whatever is fit for the drainer to be called.