it actually does not matter if its seed or legacy or multisig or segwit
if you expose any seed, wallet file, private key to a system that is hackable(online) where you probably downloaded a compromised file that contains a trojan. those coins no matter the format of the private key, becomes their
Very stupid of him to store his private keys on a computer.
The purpose of cold storage is that your keys are stored OFFLINE where it is impossible for anyone else to access but you.
When your keys are online then it is not cold storage -- it is the same thing as storing in a hot wallet. Can't believe a bitcoin dev is that dumb.
first of all cold store is a term that pre exists hardware wallets and exporting keys
for airgapped stores like hardware wallets, paper wallets and offline devises. they were just called those 3 things
cold meant home node, hot meant node on a webserver with public access
..
anyways moving on
he used a wallet to spend funds like a couple months before some hacks on his server. so obviously when they trojaned into home computer the wallets were still on PC
i know some will say "need to wipe windows/linux per spend and delete everything and start again"... but who actually does that
its like telling someone to get a new debit card each time they use their debit card for the risk of someone cloning the card.. who actually does that
.
one thing i dislike about core is how you cant choose your "change" address easily.. it just uses the current seed or the random generator to create a change address to add to current wallet in core.. .
to avoid this.. you have to instead treat it as if you are spending funds fully to 2 destinations as a complete spend of all value of current wallet/seed.. where you choose the second destination as an address of separate wallet you have not put into core/your device.
(meaning a new wallet created airgapped)
that way the 2nd destination is a wallet on a completely separate airgapped device. and no funds are being returned to a wallet that is in core when spending.
but again. who bothers to do that
some say you should take an umbrella with you all the time in case it rains.. but who bothers to do that
some say you should take an an extra shirt with you in case you get lunch sauce on one while on work break. but who does that