Pages:
Author

Topic: How to secure your wallet from scammer (Read 567 times)

sr. member
Activity: 2156
Merit: 323
February 10, 2019, 10:42:04 AM
#32
So much effective tips. In crypto field wallet hack so much common nowadays! So overcome that occurrence we should aware particularly altcoin traders who were associated moving the assets on various wallet. At least you need to learn battle hackers yourself, cause there's always a way you could get compromised.
newbie
Activity: 49
Merit: 0
February 11, 2019, 05:03:17 AM
#31
  • Use multiple addresses and not one for all.
  • Learn how to use a cold wallet to sign transactions and a hot one to transmit them to internet.
  • If you buy tokens use one address for each token or if you don't want to, send the tokens (you want to sell) to an intermediary address and then sell them.
  • Don't buy hardware wallets from unknown people or ebay.
  • Think before you act.
jr. member
Activity: 374
Merit: 2
February 09, 2019, 10:17:19 PM
#30
I have done it all of the step but sometimes people are not consistent for what they are doing it.
From that point, it lead into disaster where they are blaming the subject on himself !

Over 4 years, I keep my wallet safe and luckily scammer never come at once
Finally, i found a person who do this and his wallet safe over 4 years
newbie
Activity: 51
Merit: 0
February 05, 2019, 02:06:43 PM
#29
Use another PC for crypto) or at least create new user on your PC. and NEVER click on links from emails/messages.
member
Activity: 280
Merit: 14
February 05, 2019, 03:39:13 AM
#28
I encourage your efforts and seeing that you are a newbie you are on the right track.
It's always important to keep safety at its maximum in the cryptocurrency space and I always encourage the double layer protection 2fa
newbie
Activity: 25
Merit: 0
February 05, 2019, 02:58:27 AM
#27
It’s great to see people taking out time to help us others. It’s important to appreciate these stuff. As per rest, I feel that the BEST thing you could do in terms of safety/security is to get yourself with Hardware Wallets, which are not expensive at all, at least not IF you have sufficient Cryptos.

I would definitely recommend it especially Trezor, as it can give you the type of comfort you want and like I said, it’s not that costly either, so not wrong to use.
newbie
Activity: 14
Merit: 26
February 04, 2019, 08:35:38 AM
#26
I am a great fan of hard wallets, but please buy direct from the manufacturer. Forget Ebay and Amazon.
member
Activity: 434
Merit: 38
February 02, 2019, 04:00:01 PM
#25
I don't know this will help other user in here or not.but this tips is usefull to newbie like me.

1. Keep bookmark trusted website
There are many fake website like a fake MyEtherWallet spread on social media, email and any grub chat.
2. Use secure password while creating new wallet
Use capital letter and number to secure your password. If you want more secure add Symbol in your password
3. Add authenticator
if you using website wallet, add Authenticator to your account
4. Install Anti Virus in your device
Anti virus is very useful to secure your wallet in your computer
5. Don't using google extension that not official
Fake extension can steal your wallet. Like a MyEtherWallet CX

These are all useful tips, but I would add that the easiest way to protect your cryptos if you have even a small capital is to buy a hardware wallet like the ledger nano. Then you can rest easy!
newbie
Activity: 28
Merit: 1
February 02, 2019, 02:57:36 PM
#24
4. Install Anti Virus in your device
Anti virus is very useful to secure your wallet in your computer

If you handle wallet on PC I would recommend secure it not only with anti-virus.

Simple security guide Grin:

  • Don't open, click or run suspicious files, links, and programs. Rule of thumb: if you are not expecting it, it is suspicious.
  • Don't open suspicious files, email attachments, or archived documents, if you do not completely trust the source they are originating from. Send unwanted emails to spam folder before reading – files or links from people you don't know should be treated as malicious by default. Verify file origin by the means other than media used to receive it. For example, if you have received a Word document via email, contact the sender by an Instant Messenger or by phone and verify the reason for sending it. The most risky file types are: Any executable files: exe, com, bat, ps1, swf, jar etc. MS Office documents, especially with macros: doc/docx/docm, xls/xslx/xslm etc. PDF documents: pdf. Vector graphics with embedded code: svg. Archives of these files, especially password-protected.
  • Sometimes it's hard to tell malicious files from legitimate ones under time pressure. Use Virustotal to verify any file by scanning it by more than 50 antiviruses at the same time. While it is much more efficient than scanning files offline, consider the fact that you need to disclose the file to a third party. https://virustotal.com
  • Don't open suspicious URL links, especially those pointing to web-sites you don't normally visit. 
  • Be careful with pop-ups in your browser, applications and operating system. Always read pop-up messages and don't 'accept' anything in a hurry. 
  • Do not insert flash drives, CD/DVD, external HDDs etc. into your computer unless you explicitly trust their origin. There are techniques of hacking into your computer before you open files on a flash drive and way before your antivirus scans them. If you found it outside or inside the office, if you received it by mail or delivery, if a stranger gives it to you asking to print out a document or just open attach it to a PC – it is likely to be malicious. Only trust your own devices and proceed with caution when dealing with devices received from people you work with or otherwise collaborate.
  • Don't use pirated software. Don't run or install software downloaded from untrusted sources. This includes torrents and other peer-to-peer networks. This especially includes keygen and cracking tools that require administrator privileges to run. Morals or ethics have nothing to do with it: it is just totally insecure. First, trojaning the distribution and putting it online 'for free' is a known way of hacking into systems and it happens much more often than we'd like. Second, pirated software can rarely be kept up to date with security patches that just don't arrive to your system. Messing with 'activations' and re-activations just isn't worth it and the risks of not updating software are unacceptable.
  • Turn on Auto-Update in your Windows OS. For more details refer to the official FAQ: https://support.microsoft.com/en-us/help/12373/windows-update-faq
  • Make sure your Windows Update is configured to check for updates for all Microsoft products, including MS Office. https://www.winhelp.us/configure-automatic-updates-in-windows.html
  • Update third party software regularly or automatically. For that, use Flexera (formerly Secunia) PSI or an equivalent tool that checks your third party applications for updates and allows you to update them automatically. http[Suspicious link removed]rasoftware.com/enterprise/products/software-vulnerability-management/personal-software-inspector/
  • Turn on AppStore auto-updates as recommended by Apple: https://support.apple.com/kb/PH25371
  • Turn on your MS Office Auto-Update in macOS as recommended by Microsoft: https://support.office.com/en-us/article/Check-for-Office-for-Mac-updates-automatically-bfd1e497-c24d-4754-92ab-910a4074d7c1
  • Use Homebrew to keep your third party apps up to date. You can easily find many tools you already use in Homebrew: $ brew search vlc $ brew search wireshark $ brew search gpgtools etc. To install Homebrew, follow the official guide: http://brew.sh
  • You can use Full Disk Encryption feature of your OS to protect the data at your laptop or PC from theft or loss. FDE is a free feature on Linux, macOS, and Windows Pro.
  • Use trusted end-to-end encrypted communications for private/confidential data. End-to-end encryption ensures that no one other than you and your recipient can access the conversation. The means of encrypting email end-to-end are PGP or GPG, or S/MIME. End-to-end encrypted Instant Messengers are Signal, WhatsApp, iMessage, Viber, Threema. Facebook Messenger, Google Allo, and Telegram have 'secret chats' that may be seen as more secure than default mode.
  • To protect your traffic data and metadata from network sniffing, use VPN. You can choose from many VPN services providers, such as proXPN or OpenVPN AS. You can install and maintain your own VPN server as well. Always use corporate VPN when working with business data remotely. proXPN https://secure.proxpn.com OpenVPN https://openvpn.net How to setup your own VPN server: https://www.digitalocean.com/community/tutorials/openvpn-access-server-centos
legendary
Activity: 2492
Merit: 1232
February 02, 2019, 12:27:06 PM
#23
snip-
These are helpful but let me add some options.

..for number 1,
If you don't have your personal pc, "https://www.protectedtext.com/" could help you save the links of your trusted website.
Facebook messenger would also do it and all you need to do is search your name on the messenger search bar then click the chat bar of yourself right there.

..for number 2,
To create a secure password, you may use special characters and it is limitless.
For example, password: vampire1<*.*>

..for number 3,
it is not that necessary to have an authenticator since there are also some consequences of having one too. But some of the wallets gives you the option for authenticating your wallet too.

..for number 4,
You can actually download internet security like "kaspersky.com" to avoid being hacked with software and sites from your browser.

These are the things I would like to add for this. I hope I could help you all and have fun!
sr. member
Activity: 763
Merit: 252
February 02, 2019, 06:45:46 AM
#22
installing of anti virus is not necessary sometimes there have anti virus can access your personal data. your history even your password in your account... saving private key is enough and google authenticator is the strong security to your wallet..
full member
Activity: 484
Merit: 124
February 01, 2019, 10:40:58 AM
#21
I have done it all of the step but sometimes people are not consistent for what they are doing it.
From that point, it lead into disaster where they are blaming the subject on himself !

Over 4 years, I keep my wallet safe and luckily scammer never come at once
member
Activity: 462
Merit: 23
February 01, 2019, 07:22:00 AM
#20
Very clear information about secure wallet.  I think the safest wallet is hardware wallet. There is always a risk as long as you connect to internet. If you have good amount BTC, it is safer to store in a cold wallet or hardware wallet.
newbie
Activity: 40
Merit: 0
February 01, 2019, 07:09:35 AM
#19
First Of all Don't use Private Key to Login and Keystore File. Its better to use Metamask along with Brave Browser which has shields to many ads and offers protection.
full member
Activity: 1176
Merit: 162
February 01, 2019, 01:41:44 AM
#18
They are bunch of wallets that needs email too and those are target of scammers and hackers. They are sending fake emails, phishing websites be careful to always check where the email is coming from some looks like really identical. That's a common mistakes to click directly on those emails without checking it.
jr. member
Activity: 304
Merit: 5
February 01, 2019, 01:19:30 AM
#17
Helpful tips from newbie to newbie. But scammer is very smart. They can send any malware in groupchat to steall your wallet in device
copper member
Activity: 252
Merit: 6
January 31, 2019, 04:29:38 PM
#16
Useful advices for the noobs. But I always recommend hardware wallets. I prefer them
legendary
Activity: 1666
Merit: 1196
STOP SNITCHIN'
January 31, 2019, 01:31:55 AM
#15
#1 Should be getting a hardware wallet.

Regarding the MEW attack that happened a few months ago where the DNS was hijacked and many users who logged in lost their tokens. Those who had hardware wallets like a Nano S didn't. Because you need physical access to a hardware wallet in order to send funds from it. So a hacker can't do it without having your wallet in his hands + knowing your pin code.

Indeed, hardware wallet users don't reveal their private keys at any point in the process -- only signed transactions --  so they're usually safe from these kinds of phishing attacks.

You can achieve the same thing by using MEW offline with cold storage instead of using the web wallet.
full member
Activity: 462
Merit: 155
January 30, 2019, 10:02:52 PM
#14
If your serious about security your private keys should never be connected to the internet at all.  You should sign all your transactions offline.  You should of mentioned that instead of giving these terrible suggestions.
Or the computer in which funds/ private keys stored should not be used to for unnecessary stuffs.
For me, I dedicate one computers to use for trading, only for trading on well-known exchanges, nothing more than that.
legendary
Activity: 2730
Merit: 7065
January 30, 2019, 02:26:37 PM
#13
#1 Should be getting a hardware wallet.

Regarding the MEW attack that happened a few months ago where the DNS was hijacked and many users who logged in lost their tokens. Those who had hardware wallets like a Nano S didn't. Because you need physical access to a hardware wallet in order to send funds from it. So a hacker can't do it without having your wallet in his hands + knowing your pin code.
Pages:
Jump to: