My BTC hardware wallet was compromised - page 2.

Cricktor

hero member

Activity: 714

Merit: 1010

Crypto Swap Exchange

Quote from: lee278701 on January 10, 2025, 10:01:55 PM

~~~

Any good and decent hardware wallet should provide some indication to check it's running genuine firmware and hasn't been tampered with (the latter may be difficult because seals and so-called tamper-proof stickers aren't that good mostly, exceptions may exist).

With verified genuine firmware (open-source preferred) of trustworthy hardware wallets (this is not Ledger for sure) I wouldn't have trust issues with such a device. Everything is better and safer than a hot software wallet.

In my opinion and from my perception compromised hardware wallets are very very rarely an issue of the hardware wallet itself but rather by some sort of user faults with handling and storage of the mnemonic recovery words generated by the hardware wallet.

Most commonly it's some sort of online digital exposure of the wallet's main secrets (taking digital pictures, screenshots, being tricked to enter the recovery words on some online website and similar no-noes, granting malicious contracts access rights to your wallet in some Ethereum or token shit space the user doesn't understand, ...). If you do any of these, you clearly don't understand your non-custodial wallet security.

Poker Player

legendary

Activity: 1372

Merit: 2017

Quote from: lee278701 on January 10, 2025, 10:01:55 PM

Sorry to hear that,
Maybe during any progress of the hardware wallet 's creation or shipping, it been modified
Address or secret key been added into
All your wallets address had been altered.
That's why I don't use it

What do you use, then? HWs are currently the most secure methods of storing your cryptocurrencies and cases like the OP's are the exception rather than the norm. Mind you, if you buy a HW buy it directly from the house, don't buy it second hand or from sites like Amazon.

lee278701

newbie

Activity: 15

Merit: 1

Sorry to hear that,
Maybe during any progress of the hardware wallet 's creation or shipping, it been modified
Address or secret key been added into
All your wallets address had been altered.
That's why I don't use it

CryptSafe

sr. member

Activity: 728

Merit: 421

Quote from: OcTradism on January 09, 2025, 09:20:11 PM

Quote from: PX-Z on January 09, 2025, 06:46:31 PM

Sorry to hear your loss, after learning what had happened you should secured at least your backup in a safe place, it must be the one that was compromised. Higher chance is you were victim of phishing link and fake app. Regardless if someone had the same experience as you, you cannot recover those funds that's why prevention safety should be followed.

Bitcoin blockchain is really hard to attack 51%, and nearly impossible, and Bitcoin transactions are consequently irreversible. This means if a person becomes victim of scammers, hackers, bitcoin lost through on chain transactions, will not be reversible.

Chance to get stolen or scammed bitcoin back is very small, if not say it is nearly zero chance.

Prevention, therefore, is better than try to recover your scam bitcoin.
Security and Privacy Encylopedia

Indeed, chances of getting back one stolen Bitcoin on-chain is not possible, taking precautionary measures could help minimize the risk of losing one's Bitcoin to scammers and hackers. If people are careful with how they save their keys and properly check their wallet addresses before sending bitcoins, they will never encounter challenges such as missing coins or sending bitcoins to the wrong wallet address. Concerning hacking, one should just avoid public wifi, and also random links should be avoided so they do not get hacked.

I believe there is a possibility of OP tracking the transactions or movement of his Bitcoin on-chain to the final destination. Maybe if OP could devote his time to doing proper tracking and tracing of transactions, OP could get details of the CEX wallet addresses related to the wallets linked up to the hackers' wallet, It could help to further know who the hackers are.

OcTradism

hero member

Activity: 1722

Merit: 801

Quote from: PX-Z on January 09, 2025, 06:46:31 PM

Sorry to hear your loss, after learning what had happened you should secured at least your backup in a safe place, it must be the one that was compromised. Higher chance is you were victim of phishing link and fake app. Regardless if someone had the same experience as you, you cannot recover those funds that's why prevention safety should be followed.

Bitcoin blockchain is really hard to attack 51%, and nearly impossible, and Bitcoin transactions are consequently irreversible. This means if a person becomes victim of scammers, hackers, bitcoin lost through on chain transactions, will not be reversible.

Chance to get stolen or scammed bitcoin back is very small, if not say it is nearly zero chance.

Prevention, therefore, is better than try to recover your scam bitcoin.
Security and Privacy Encylopedia

PX-Z

legendary

Activity: 1554

Merit: 880

Wallet transaction notifier @txnNotifierBot

Quote from: ? on January 08, 2025, 05:58:25 PM

Hi guys,

i just want to share my experience with you. This incident happened 3+ years ago. I logged into my ledger live app, and I found out that my remaining balance was sent to an unknown btc address. At the time I searched on the internet and I found out that this wallet was reported by a couple of other people. Tonight, I checked again my wallet and I found out that the owner of that address moved the coins to other wallets, maybe an exchange, last April (2024). I was wondering if anyone has a similar experience with me, and knows if it is possible to recover the coins in any way. The address that stole my coins is this : bc1qye8jqulxsk6jd4ehkjcm9rtp9fuufntqgqcagn

Sorry to hear your loss, after learning what had happened you should secured at least your backup in a safe place, it must be the one that was compromised. Higher chance is you were victim of phishing link and fake app. Regardless if someone had the same experience as you, you cannot recover those funds that's why prevention safety should be followed.

btcltcdigger

hero member

Activity: 2086

Merit: 761

Top-tier crypto casino and sportsbook

Quote from: ? on January 08, 2025, 05:58:25 PM

Hi guys,

i just want to share my experience with you. This incident happened 3+ years ago. I logged into my ledger live app, and I found out that my remaining balance was sent to an unknown btc address. At the time I searched on the internet and I found out that this wallet was reported by a couple of other people. Tonight, I checked again my wallet and I found out that the owner of that address moved the coins to other wallets, maybe an exchange, last April (2024). I was wondering if anyone has a similar experience with me, and knows if it is possible to recover the coins in any way. The address that stole my coins is this : bc1qye8jqulxsk6jd4ehkjcm9rtp9fuufntqgqcagn

No way to recover. You either bought a tampered ledger wallet off of ebay, or you somehow got your keys visible.
Maybe you had spyware on your pc, or maybe someone saw the seed keys and copied them, who knows. But one thing is sure, you can kiss those BTC goodbye

dkbit98

legendary

Activity: 2212

Merit: 7064

Quote from: ? on January 08, 2025, 05:58:25 PM

i just want to share my experience with you. This incident happened 3+ years ago. I logged into my ledger live app, and I found out that my remaining balance was sent to an unknown btc address. At the time I searched on the internet and I found out that this wallet was reported by a couple of other people. Tonight, I checked again my wallet and I found out that the owner of that address moved the coins to other wallets, maybe an exchange, last April (2024).

Ledger devices are closed source junk, and I always warn people to stay away from that crap, BUT it's much more likely that your seed words backup got compromised, and not your device.
Another option is that you purchased this device second hand or from some suspicious seller that added some malicious modification to your device.
There is also a chance that you have some malware on your computer, especially if you are using wiNd0ws 0S.

Quote from: ? on January 08, 2025, 05:58:25 PM

I was wondering if anyone has a similar experience with me, and knows if it is possible to recover the coins in any way.

It's almost impossible to do that, unless you find out who did it and how.

Aanuoluwatofunmi

sr. member

Activity: 840

Merit: 437

Quote from: ? on January 08, 2025, 05:58:25 PM

i just want to share my experience with you. This incident happened 3+ years ago. I logged into my ledger live app, and I found out that my remaining balance was sent to an unknown btc address. At the time I searched on the internet and I found out that this wallet was reported by a couple of other people. Tonight, I checked again my wallet and I found out that the owner of that address moved the coins to other wallets, maybe an exchange

The moment that the forum members here discovered that ledger wallet was no more secured for privacy use, they dissociate themselves from making recommendation over using it, because they have no trust when it comes to that and you're making use of that same wallet.

Secondly, it may be that someone have already hacked or is having access to your wallet and such is using that to steal from you without you knowing, my advise is that you should change the wallet and use another hardware wallet that is more secured like Trezor.

coupable

hero member

Activity: 2338

Merit: 757

Top-tier crypto casino and sportsbook

Quote from: ? on January 08, 2025, 07:35:08 PM

I know it is unreversable and I did transfer the rest of the funds to my exchange account straight away. My laptop was switched off and offline when this happened as I was on a flight. I checked when I got home, couple of hours after landing. I can share the transaction details here in case anyone can trace it. Is it possible to prove theft if the stolen funds were sent to a proper exchange, like coinbase etc?

Of course this is possible, but several considerations must be taken into account ; you can know the platform to which the address belongs, and the platform in turn knows who used that address to deposit, but it cannot help you without legal permission from the authorities. That is, you have to go to the authorities and file a complaint stating that your data and digital assets have been stolen, along with providing evidence of your ownership of the addresses and assets therein. The authorities, after confirming this, will contact the platform and force them to provide the necessary data to identify the thief. The problem is not that it was a crime that occurred three years ago, because crimes do not expire with the passage of time, but that the stolen amount is not worth all this trouble.

OcTradism

hero member

Activity: 1722

Merit: 801

Quote from: NotATether on January 09, 2025, 05:15:07 AM

Whatever it is, never keep digital copies of your seed phrase ever. It should be in the paper world only. If you need to restore your seed on another computer, transport the paper there and type it manually. Never store it on a computer (as I am not really sure what exactly caused your bitcoins to get stolen).

Store wallet files, wallet seed on a device (computer, laptop, phone, usb stick) is risky because if someone steal that device or compromise it, your wallet will be accessed by them and your coins will be stolen.

I agree that paper as a wallet backup when you are moving around is safe. It's safer than device that can be connected to Internet, as you might not lose your device but it will be still compromised by hackers. With paper, except if you lose it, you will not lose your wallet and your coins.

How to back up a seed phrase.

tabas

hero member

Activity: 3234

Merit: 775

🌀 Cosmic Casino

Forget about recovering that unless the authorities will caught that hacker together with the funds. But it is most likely that the funds were already gone and moved again from other addresses or converted into a privacy coin, et.al. What you can share us is on how you were hacked. What things you did for that hacker to steal your funds from your hardware wallet. Did you received some airdrops on your address and you clicked on the link that's attached to the NFT or airdrop through your ledger live?

Btcdeybodi

member

Activity: 75

Merit: 16

Quote from: CryptSafe on January 09, 2025, 08:29:00 AM

Since the wallet address that stole from you is the above, it would be better if you provide the wallet your assets were stolen from so that it would be properly traced by other members because, with this address you have provided, nobody can know where the assets were stolen from because there are lots of transaction recorded to the wallet you provided that stole your asset.

Providing the principal address the coins was moved out from doesn't mean there is anything we can do to help him but just to be sure that the wallet actually belongs to him, that is why i told him that it would be better to provide the address and a signed message with the wallet address just to authenticate that he is the true owner but as for the coins that has been moved out already, nothing can be done Sad

JunaidAzizi

sr. member

Activity: 728

Merit: 300

Love Bitcoin🖤

Quote from: ? on January 08, 2025, 05:58:25 PM

Hi guys,

i just want to share my experience with you. This incident happened 3+ years ago. I logged into my ledger live app, and I found out that my remaining balance was sent to an unknown btc address. At the time I searched on the internet and I found out that this wallet was reported by a couple of other people. Tonight, I checked again my wallet and I found out that the owner of that address moved the coins to other wallets, maybe an exchange, last April (2024). I was wondering if anyone has a similar experience with me, and knows if it is possible to recover the coins in any way. The address that stole my coins is this : bc1qye8jqulxsk6jd4ehkjcm9rtp9fuufntqgqcagn

It is such a terrible thing that someone stole your funds like that, and you feel helpless because you can't do anything. Because of such incidents, the crypto world is notorious for scams, and people don't trust it. I know Bitcoin transactions are irreversible, and the only way to recover your funds is if the thieves cooperate, which is impossible. So the only option you have is to follow up on that address. As you mentioned, the last transaction was made in April, so if they send your funds to any exchange, then maybe you can negotiate with them and provide your evidence against that theft. Perhaps they can do something for you. But remember, this is just my suggestion, it may not work for everyone. However, I wanted to share the possible solution that came to mind. So before doing anything, do your own research (DYOR). There are also other people who have complained against that address, so maybe some results will come up.

CryptSafe

sr. member

Activity: 728

Merit: 421

Quote from: ? on January 08, 2025, 05:58:25 PM

Hi guys,

i just want to share my experience with you. This incident happened 3+ years ago. I logged into my ledger live app, and I found out that my remaining balance was sent to an unknown btc address. At the time I searched on the internet and I found out that this wallet was reported by a couple of other people. Tonight, I checked again my wallet and I found out that the owner of that address moved the coins to other wallets, maybe an exchange, last April (2024). I was wondering if anyone has a similar experience with me, and knows if it is possible to recover the coins in any way. The address that stole my coins is this : bc1qye8jqulxsk6jd4ehkjcm9rtp9fuufntqgqcagn

So sorry about your experience mate. I read your other response to comments where you said you checked your wallet last before you boarded a flight and I want to ask if you used the airport wifi because that is one of the possible causes of your hack if you used the public wifi and another question I would ask is if you stored your seed phrase in google cloud? because that is another aspect of safety people make mistakes of and sometimes it does not end well with their assets as it is being stolen.

It is best you store your seed phrase on a piece of paper and keep it in a safe place where only you can access it whenever you want to. As for your assets, you can track them here to see for yourself where it was sent to and other final destination of your assets.

https://intel.arkm.com/tracer?address=bc1qye8jqulxsk6jd4ehkjcm9rtp9fuufntqgqcagn

https://intel.arkm.com/explorer/address/bc1qye8jqulxsk6jd4ehkjcm9rtp9fuufntqgqcagn

Since the wallet address that stole from you is the above, it would be better if you provide the wallet your assets were stolen from so that it would be properly traced by other members because, with this address you have provided, nobody can know where the assets were stolen from because there are lots of transaction recorded to the wallet you provided that stole your asset.

Lucius

legendary

Activity: 3234

Merit: 5637

Blackjack.fun-Free Raffle-Join&Win $50🎲

Quote from: ? on January 08, 2025, 07:35:08 PM

I know it is unreversable and I did transfer the rest of the funds to my exchange account straight away. My laptop was switched off and offline when this happened as I was on a flight. I checked when I got home, couple of hours after landing. I can share the transaction details here in case anyone can trace it.

Did you use a public wireless network while you were at the airport or in the hours before the flight? If by any chance you are, there is a possibility that you have become a victim of something called "evil twin" attacks and it is very popular in all locations where a lot of people gather.

Quote from: ? on January 08, 2025, 07:35:08 PM

Is it possible to prove theft if the stolen funds were sent to a proper exchange, like coinbase etc?

It's definitely possible, just as it's possible to report such things to the police - but the point is to do it as soon as possible, not to think about such things three years after they happened.

Peanutswar

legendary

Activity: 1806

Merit: 1437

Wheel of Whales 🐳

Once the transaction is already confirmed you cannot take it back again this could be considered as another charge to experience, can you tell whats the background story of the wallet why being compromised?, its the hardware wallet already so there's a possible case the seed was stolen or the wallet itself so the hacker easily use to make a transaction reason why the use of the hardware wallet is to keep away and store it online likely you don't have an active transaction on it.

NotATether

legendary

Activity: 1568

Merit: 6660

bitcoincleanup.com / bitmixlist.org

Quote from: ? on January 08, 2025, 07:35:08 PM

I know it is unreversable and I did transfer the rest of the funds to my exchange account straight away. My laptop was switched off and offline when this happened as I was on a flight. I checked when I got home, couple of hours after landing. I can share the transaction details here in case anyone can trace it. Is it possible to prove theft if the stolen funds were sent to a proper exchange, like coinbase etc?

So the hacker did not steal all of the Bitcoins or something? Or what else?

Whatever it is, never keep digital copies of your seed phrase ever. It should be in the paper world only. If you need to restore your seed on another computer, transport the paper there and type it manually. Never store it on a computer (as I am not really sure what exactly caused your bitcoins to get stolen).

BitMaxz

legendary

Activity: 3500

Merit: 3249

Happy New year 🤗

Quote from: ? on January 08, 2025, 07:35:08 PM

I know it is unreversable and I did transfer the rest of the funds to my exchange account straight away. My laptop was switched off and offline when this happened as I was on a flight. I checked when I got home, couple of hours after landing. I can share the transaction details here in case anyone can trace it. Is it possible to prove theft if the stolen funds were sent to a proper exchange, like coinbase etc?

I believe you can report it if the hacker sent it to an exchange such as Coinbase, but you will also need the assistance of local authorities for an investigation. The only issue is that most hackers do not use centralized exchanges, and I am sure they have other ways to launder their funds, such as using mixers or exchanges without KYC. Anytime they can use those exchanges to hide their identity and receive clean coins.

How exactly you save your backup seed? As others have mentioned, if it was just a file or screenshot, your backup may have been synced to a cloud-based platform. If we are correct, your backup seed is no longer safe.

Would you mind to tell us what hardware wallet you currently using?

Don Pedro Dinero

legendary

Activity: 1358

Merit: 1565

The first decentralized crypto betting platform

Quote from: Cricktor on January 08, 2025, 10:04:00 PM

Did you have a digital copy of your mnemonic recovery words (screenshots, photos, files)?

I have seen a couple of cases in another forum over time, very similar to this one, where the affected people could not explain how their coins had been stolen if they had a hardware wallet, and after some investigation it turns out that they uploaded a copy of the seeds to the iCloud because they thought it was too secure. Lol. As bad as Ledger's reputation is for data theft on several occasions, their hardware wallets are still safe as long as you do keep the seeds safe.

Topic: My BTC hardware wallet was compromised - page 2. (Read 505 times)