Topic: My Trustwallet hacked, and $43,000 BTC was stolen (Read 619 times)

the OP should look at when the funds moved from their address to the hackers address. and look at the phone activity and what got downloaded or which emails/websites they viewed around the time of the hack to narrow down how it happened

looking at my junk mail of my disposable email i use to sign up to crap sites, i see lots of scammers mailing scams about trust wallet, trying to tempt people to pass info to scammers..

even if someone had a official wallet, stored in a safe encrypted area of phone storage can still get scammed/hacked by being redirected to a site or conversation where they are asked to reveal info like a passphrase or download an update(trojan).

other things can happen like letting someone else use your phone, and while pretending to make a call/text on your phone they are actually logging into your wallet and moving funds

blockchains are secure against funds moving from an address on the blockchain, by not allowing funds to move without a signed transaction using the keys. but that does not stop things happening where the source of the key becomes open to attack. no matter how secure a wallet is. you need to be careful about who accesses the device/person that holds the key/phrase/wallet

This means that you and I can draw our own conclusions about the truth of the OP's story, which doesn't need to be opened again because other people can also judge it.
Trust Wallet is not a good wallet to use amidst the many open source wallets that can be used because Trust Wallet is a closed source wallet that users often complain about incident after incident.
From the OP's story and the opinions of everyone present here it should be an important lesson for you and me that there is no benefit in making up stories if there is no truth to them.

What do you exactly mean by the scammer hasn't cashed out even after three months, do you mean to say that the funds are still in your wallet waiting to be withdrawn by the scammer?, or that the funds were withdrawn by the scammer to another wallet, but he or she is yet to spend it by moving it to another wallet?, if the later be the case, then the scammer sure have cashed out your funds since it's no longer on your wallet and in your custody.

But if the former be the case, then that clearly means that you've not been hacked, and you can still take possession of your fund.

Overall, your story seems to me like you are a complete crypto newbie, contrary to your claim of not being a newbie, maybe you might want consider sharing with us the transaction hash generated when the scammer withdrawed the funds out of your wallet, not as if doing this will help recover back your funds, but just to prove that you are not lying to the community here.
Up to you though.

OP, I am so sorry that this happened. Its devastating for something like this to happen, but if life has taught me anything is that everything happens for a reason and there is a light at the end of the tunnel. You can re-build. You will re-build. As long as you believe that one day you will have more than you lost and never give up trying to get it all back and then some & do it with perseverance than nothing can stop you. I know this is a tough pill to swallow, but when times are good you thank God, & in turn when times are bad you thank God. Even now, thank God for this. He may have been protecting you from a purchase that could have resulted in a life ending incident or caused severe harm, we never know why these things happen but if you have this attitude of gratefulness in any circumstance then I believe that nothing but good things are in store for your future. God bless!

This sounds like a fictitious story. Well,  I don't know what to believe, but if it is true that your wallet got hacked and all your assets got hijacked, I believe you will definitely share with us your wallet and the address it was sent to. Right at this moment, your wallet has already been hacked, as you claim, and there is nothing you are hiding again. If perhaps you had some coins in that address and you didn't want to share them here, it is quite understandable, but now that the wallet is empty, it will do you no harm to share the address. 

But if what you said is the truth, that means someone has access to your phone, and the person must have been monitoring you very closely. 

Those mobile app games you let your son play could have malware that security breached your phone. Temu app and TikTok app is known for hackers and other Chinese apps as well.

You made a transaction worth $43k in BTC to your Trust wallet - and what I assumed as one of the possible scenarios is that this transaction was never even confirmed on the blockchain, but every incoming transaction is visible in every wallet that is online regardless whether confirmed or not. If you are 100% sure that the transaction is confirmed, then my theory is not correct.


How is it possible for hackers to break into the most protected systems in the world and steal terabytes of data when those same systems are far more advanced protected than your mobile phone? Any protection can be bypassed, but the answer to that question will certainly not be found on a forum like this.

Whether this is just a fictional story or a true story? but if you can afford to have $43k in BTC,
why not afford to buy a Hardware wallet that only costs $100-$200 and even that would be safer.

Using Trustwalllet is indeed quite safe, but is the device used safe, how careless is possible by the user.

There have been many responses to seniors about safety and advice given, but the OP has been reluctant to share the details publicly.
At the very least, it provides evidence that the $43k hack on trustwallet actually happened.

I'm curious as to how and what Samsung should do for this kind of thing happening with them. It's as if they managed to bypass the security with the biometrics and stuff, would they be responsible? 

I don't think this is a common hacking incident if there should be protection with the Samsung app. If it has the phrases there, it's only with the app.

As much as possible, I think the best approach when this is happening is to have a manual or offline way of security measures.

It would be better if this story was accompanied by screenshots or hacked addresses. Even though it is almost impossible to return it, I think some people here have a detective spirit and can trace the hacked money.
If this is a genuine story, then I am also concerned about it. This could be a lesson that with that much money, it's best to save it in several places, and not keep it all in one basket. However, we will never know what will happen, it could be that someone else accesses your smartphone without your knowledge, or there are many factors. That $43k is a lot of money, personally I would probably put it in the bank, and use some of it for investments.

What kind of privacy are you talking about? His wallet was hacked (if he's not lying). His address no longer belongs to him and it would be the greatest folly on his part to continue using that address. So if he posts his former address here, it will not affect his anonymity and privacy in any way. Of course, if the author of the topic wants to lose more by using that address, then please let them not publish it.

To be honest it's unreasonable for you to say this member is lying. He even offered to show forum moderators and you questioned that. There is no reason someone needs to send any other forum member a link to their cryptocurrency wallet address, especially on a public forum like this. There is no doubt that bots index this forums addresses, and any address posted here will be linked in some Bitcoin big database, that the address belongs to a specific BitcoinTalk user. I completely empathise with OP not wanting to share his address here for his own personal privacy. Also whether or not it's $43k or $40 in BTC stolen, the advice he is seeking is based on the scenario he mentioned.

@ OP, regarding your post, it may be possible that a supply chain attack has occurred where a malicious update has been pushed to the application itself and funds exfiltrated that way. In general this is an expensive lesson on the importance of having a hardware wallet like Ledger or Trezor, where funds can't be sent without a physical token.

I agree, I can understand that someone that has a low amount of money invested on this market could be apprehensive about buying a hardware wallet, as there are good open source alternatives that are free, but once the money invested hits a sizable amount, getting a hardware wallet should become a priority, especially if the person is not really knowledgeable about computers and how to secure them, otherwise losing their coins is just a matter of time.

Who keeps $43,000 worth of assets in a custodial wallet that doesn't even give you access to your private keys? Just having your Trust Wallet seed phrases doesn't guarantee that your funds are safe and that you are the only one having access to them. As they say, not your keys, not your bitcoins, which means that if you don't have the private key to your Bitcoin wallet then those coins and assets aren't completely yours even if you have bought them but you aren't keeping them only to yourself.

Your statements that you are not a newbie and that you have been using Trust Wallet for 4 years for storing amounts larger than this contradict each other because someone who isn't a newbie should know and understand that they are not supposed to use custodial wallets for large amounts. If you think they are convenient for use and easy to connect with websites and services, you can keep a small amount in them and keep the rest somewhere safe, in a non-custodial wallet, preferably a hardware one.

If your story is true, I don't know if you have any hope for getting your funds back because I don't have much knowledge about Trust Wallet, but I would suggest that you start studying about wallets and their security, compare custodial and non-custodial wallets, and choose one that you think is the best for the future.

It's not surprised that I'm feeling right now, I feel more on the pity and shame for this kind of action, I mean there's a lot of things that you can do in the forum and on the Internet in general but you've chosen to be a pathetic and sad troll that only gets off the reaction of other people, that's just sad to me and it feels like people are really into having this kind of arrangement in life, to be a troll and get people's attention the wrong way.

This is why I'm not sure where the truth lies in the story. He just trusts the moderator and is willing to tell him ^{[wallet address and transaction id]} - but some moderators have asked questions, while he has not sent any evidence justify his story.

The OP asked about how he was hacked - the answer can be found based on clues to how he used his phone. As for why the hacker didn't move those bitcoin - it's not in our capacity to know what the reason behind it is. Only the hacker knows why he hasn't sold or moved the bitcoin to another wallet - it could be that the hacker hasn't found a safe way to do it or maybe he's waiting for new ATH. If all of these stories are true - then sorry for your loss, OP.

Op, as much as your story doesn't sound like the truth, I'd like to give my own little contribution...
One of the lamest things I've heard ever since my crypto journey began is that someone kept an amount as high as that on a hot software wallet, but claims to have atleast 4 years experience in crypto... Secondly, why are you refusing to put up your Txid for confirmation? That looks fishy to me too.
This is what I have to advice you; let's assume this is true, I'd say you were wrong in the first place. How could you not decide to purchase a hardware wallet? It's too expensive? Oh, is better to have lost everything like you did? C'monnn..You need to be careful with your earnings...
Ahhhaa ...Are you surprised? That's another clown from the off topic section as usual.. I'm not surprised he's jumping in his bedroom for getting so much attention over a story he just made up.

OP doesn't have any kind of evidence provided but still keeps on replying and trying to explain to everyone that it's real and all that he's said before is true and honestly it's a good call for @Xal0lex to call OP out and now OP is trying to do something but keeps on fumbling on the attempt. It's as simple as posting the address because that has the record of the money that was stolen but it seems that OP can't do it and I don't see how that can be a problem or anything like that, it's not like anything changes for the better if you withhold such information.

Why didn't you take out security when you had $43k? Here you should have used hardware wallet because 43k dollars is a lot. You used a wallet like trust wallet which is not very secure. There will be no regrets as lost money will never come back. You can try again and again to see how much you can earn later in life. However, it is always important to exercise caution. Also you can add your hacked wallet address here for everyone to see.

Right. This does not mean that they are a newbie but it means that they did not take the security of their coins seriously. Trust wallet, or any other type of hot wallet on your mobile phone, has never been a recommended method of keeping any significant amount of money. If youve really been at this for four years, you should know that.


Honestly, you have not provided any evidence for this.

You said you used trust wallet on your iPhone but the paragraph after this, you said Samsung. Nevertheless, wallet hacked doesn't have anything to do Witt whether you are expert or you are a newbie, sometimes the things we don't expect are the ones that happen to us without us even noticing the mistake occurring. I just want you to know that I have experience similar experience on my wallet I created from metamask and export to my Trust wallet too before, that was the day I stopped using the wallet because it's an open source software.


Sorry for your loss but what chain exactly were you holding your coins even though it doesn't matter, in just skeptical how vulnerable your seed phrase was easy to guess or copied by another person. What I can say about this your possible things that happen is that first and foremost, Trust wallet is open source and is the reason why many developers don't recommend it as wallet and your android phone is open source but android security is very short, you may have a malware of your phone but trust me, you will never know about it. Something most have happened somewhere in your phone.

Ironically you trusted an untrustworthy wallet. Always go for open source and non-custodial. There are so many threads here on this forum that could have helped you pick out a better wallet.

Also, what was your BTC address?

I don't want to raise any false hopes, but there's a small chance the third-party platforms that I've listed in "this post" could help with intercepting the hacker's next move ^{[it's a long shot, but it's better than nothing]}.

If I were to guess, I'd say the hacker in question is trying to stay under the radar for the time being ^{[he/she wouldn't be the first one to do such a thing (e.g. movements can happen even after a year or two)]}.

While OP is claiming that he's not a newbie, it's possible that he got hacked based on how his activities were, what he downloaded, and in this case the wallet, trust wallet. Let's say that you've downloaded the real trust wallet and it wasn't the issue, I think that no one will blame themselves at the same time when they've already lost their funds a long time ago. There are already some questions on your story and asking for proof that you can't provide like your address.

The sentiment is within you if this has happened for real and we're sorry about it but if you can add more details much better. It's tough when you've lost an amount that is lifesaving. You'll not get any malware if you didn't do anything.

If this story is true, I want to go into the middle of a forest and scream.

You installed TRUST WALLET, which is partially Closed Source, in the Samsung Secure folder, which is a proprietary Application.  You used this partially Closed Source Wallet in conjunction with Avast AND Kaspersky, which are also both Closed Source Applications that can scan your files and send information about them to Third Party Servers.  Besides, many many years ago when I last ever used an Antivirus at least, the golden rule was NOT using two simultaneously if you wanted the best Security from them.  I am not sure how valid that rule is today.  But anyway.

Are you sure the Trust Wallet version you are using is legitimate?  I would be very skeptical about a partially Closed Source Wallet, but at least Trust Wallet has a reputation built and I do not think there are any valid accusations of them doing theft so far.

Are you using the legitimate, original Android ROM of your phone or did you flash a Custom one?

Where did you store your Seed Phrase?  Does any body else have access to that location or around it besides yourself?

As for how did the thief bypass the Secure Folder, I do not know of any real proof of how actually Secure the Secure Folder is.  But I imagine you are not the only one using it for storing your Cryptocurrency Wallet and if it was a Malware that penetrated even the Knox Sandbox then it would be expected that many more Wallets were affected, not just yours.

Unfortunately, it is not rare that the problem is either the way the victim stored the Seed Phrase or even some body close to the victim stealing it.  Think about it very carefully, let emotions to the side and start from your own house to the external World.  As much as you think the people you are living with or coming to your house are innocent, it is important to rule out every potential thief one by one.

That's exactly what I think but if he's telling the truth there are ways to prove it and all we want to know is the BTC address of the OP and the Thief as well because based on his story, he found out that the stolen funds haven't been moved out yet and with that, there still chance to track it if he wants to and ask cybercrime management in their country to help him.

But recently, people have been narrating fabricated stories to get some attention and some help from users but they are already fed up with these lies and they won't fall into the same trap again unless you show them proofs to support your stories and claims.

He has not provided the BTC address that contain that much amount. I do not know what is the reason to hide it as we are not asking any private keys but the public bitcoin address 

I really doubt OP story and will only believe to some extent if he share the bitcoin address that had this amount stored on it. If this is a false story, i also do not get what could be the purpose of it 

You must not have read OP's post very well. He mentions that there were problems with TrustWallet on the iPhone, but he doesn't say he was using an iPhone. He says that after this news with the TrustWallet hack on the iPhone, his Android smartphone was hacked.

The story is not really clear because at first he the Op used iphone and the iphone he was using and the coins were in the iphone but the hacker hacked the coins from Samsung phone. Lolz this is strange story to rank up. From the reading of the Op story it is clear that the story is not true. Before someone hacked a wallet the seed phrase must have leaked. Like a thread I have read here. The guy mixed up his seed phrase and sent it to a hacker and the hacker rearranged the seed phrase and transfer everything has in the wallet, that story is somehow believable because the mistake was made by the owner.
But this Op is confused in the forum so he is trying to frame up any story to write and thinking that people would pity him and give him merits.

This sounds like a fake story but I will like to clear the part where you throw in the kapersky and other antivirus, the truth is real time protection from anti viruses works best on the PC not on mobile, remember that we have to always run the antivirus in the background of the PC, that's real time, you can't do that on smartphones.

One way or the other, a virus can easily sleep well during the day and night on your phone without been detected than on PC.

@OP
maybe I have missed it... but did you have verified with local police to fill an official claim?
If I remember correctly, you can try to track these coins and if these arrive in a wallet knowon of an exchange, you can ask to lock this account and get more details on it. I think you need to do both actions. Of course you need in most cases an official complaint.

Personally I can't trust or distrust your story (meanwhile I hope isn't true due the high amount... I am pretty sure you're not wasting precious time ...)

Sounds too unrealistic. Yeah, software wallet may have weaker security but if not sure that they can really be hacked

There is no need to play the blame game, you made a mistake storing such an amount on a closed-sourced wallet with a history of security breaches. You shouldn't also depend on third-party securities from phone makers. Such an amount should be in a hardware wallet.


The simple explanation is that your phone security was compromised and the hacker had access to your funds. It is only the hacker that can explain why he has not cashed out.


If the hacker sends the money to an exchange, there is a slight possibility that he can be tracked especially if he went through KYC. Sorry for the loss, but the moral lesson is never to keep such an amount in Trust Wallet.

You're not the only one using a Samsung phone, and your device isn't unique either. You should ask why are no other users experiencing this problem and you are the only one experiencing it.

It's not too difficult to understand when you lose money and don't want to admit it was your fault. You like many others are always confident that you have turned on all security modes and are very careful in every detail, so it is definitely not your fault. But you forgot that you made a fundamental mistake: you should never store bitcoins with an internet-connected wallet because risks in the internet space are unpredictable. Even if you're confident that you've been very careful, that doesn't mean your phone is very safe. New viruses are created every hour and fighting it is not as easy as we think and that is why hardware wallets are always top recommended.

What guarantees that before you install trusted wallet and transfer bitcoins to the wallet, your phone is always safe and virus-free?

The first thing I would like to ask is why store so many bitcoins in a trust wallet if you are right besides that you also do not provide further information such as your addres or anything else to convince yourself that it is true

Also, it would be pretty reckless if you kept all that big money without a phrase and not secured because as far as I know trust wallet or any wallet can be opened on another device when there is a phrase and of course there must be a password that you have prepared beforehand unless you forget the password too.
Your words seem to be made up because you said the amount was large and happened months ago but you are only talking about it now so it is quite natural that many people will doubt your story.

Another funny thing. It’s funny to talk about yourself as an experienced user, but you're still storing a rather large (in the opinion of most) amount on your phone. Store in an app that once had a bad history but does not have a hardware wallet that costs pennies compared to that amount.
Moreover, it is very funny to trust a child to install a bunch of toys on this phone and not realize that these toys are not always as safe as many people think. Entrust your child with your phone and hope that he doesn’t press some unnecessary button. You just need to give birth to a genius child. 
For comparison, those people who teach how to have a wallet that does not have access to the Internet at all, in the OP’s understanding, are simply stupid and cowardly. 
Why wasn't your amount withdrawn immediately? Simply because it takes time to transfer to hackers and verify all the important and necessary amounts for the hacker.
Probably for the OP, this amount is not large, since such careless storage is possible only for those for whom the amount in the tens of thousands is not very large.

Provide the address containing the BTC that you mentioned to be able to find out whether the address is actually filled with as many assets as you mentioned.
If stolen, we can trace the transaction by providing a transaction ID.

Don't put forward bad feelings when someone asks you to show your address and transaction ID.
In my opinion, Trust Wallet is not a good wallet for storing that much Bitcoin.

Someone using Trustwallet to store bitcoins does not mean that they are a newbie, even though I said goodbye to the cryptocurrency market and actually don't have any other money! However, this incident was not caused by my mistake and is clearly due to Samsung's lack of security on the Samsung security folder.

I raised this issue here so that maybe someone has more detailed information, but apparently, no one knows how hacking happens or why the hacker doesn't cash out the stolen BTC.

I know that my money is lost for ever, I can only wish everyone good luck and hope no one loses an amount like this; it's tough.

43k USD to BTC is clearly about 0.689 in BTC and having such in a hot wallet like Trust wallet for too long, is a firstly a wrong move and it's only what a newbie would do.

Being a newbie means that despite our OP having had such an amount of coins (if ever) in a wallet and neither grew in his trading or investment abilities and knowledge as well as didn't grow in knowledge as regards safety upgrades for wallets and the best wallet type to use for BTC or cryptocurrency holdings in the form of savings or DCA. It means he is still a newbie in the crypto market and am certain he is a newbie here too and may have made up this story, else, am sorry such had to happen.

Perhaps he should contact Samsung and iPhone customers support with well detailed analysis on what happened with good pics and links if needed.
Also check if you whitelisted any address in the exchange you used as well as on your wallet.

In times now everything is possible if you are always connected to the internet. A malware does have the ability to sit in your device and record everything without getting detected. The reason being those antivirus have to first get updated with such malwares before they are able to detect it.

I do not understand why you even used a close source wallet such as Trust wallet. If you were planning to accumulate Bitcoin or hold it for long term gain then it is imperative that you opt for a hardware wallet. Some software wallets like Electrum are highly recommend in the forum.

I am sorry for your loss and I can only sympathize with your current situation. I would say only one thing that you still can learn from your mistake and work on to gain the lost fortune.

I apologize if there is any misunderstanding. Of course, I meant $43,000 and not 43,000 bitcoins. I didn't think this clear issue would cause a wrong impression. It's funny someone who keeps 43,000 BTC coins in a Trust wallet and then comes here to discuss!

What do you mean exactly? I transferred $43,000 from Bingx to my Trust wallet on Monday at 6 pm, and it was withdrawn without my permission on Tuesday at 2 pm.

My main question is: How can malware unlock the secure folder and then bypass the trust wallet fingerprint?

Let me guess, you are one of those who lived in the belief that you should trust a wallet just because it has "Trust" in its name? There is no such hot wallet that I would trust with such (and a much smaller amount), but you learned it the hard way.


There is another possibility, and it is about the fact that you actually saw an incoming transaction that was not confirmed, and then someone in that exchange performed a double-spend attack and redirected the coins to another address. I'm not saying that it really happened, but that CEX doesn't have a very good reputation judging by the client reviews.

The password and Fingerprint  will only work incase of an attempt from your phone but if your seed phrase got leaked It can be accessed through another phone without any password or Fingerprint, it's a non custodial wallet.. nevertheless, it's still good to use some extra layer security  to prevent a random person or stranger from laying hands on your funds in access to your phone but that doesn't still guarantee the safety of the wallet

If only this story is true, then I guess with what you said above by allowing your 4yrs old kid to play with your mobile device, to the extent of installing dozens of games, must have been the reason why you got hacked, because who knows if your kid might have downloaded a game virus into your device which could have given the hacker access to your wallet? And as such decided to transfer your funds to a dormant account for a certain period of time when you might have forgotten about it to avoid possible tracking. Who knows?

Just like I earlier said above, who knows if your kid might have authorized the hackers access to all nocks and cranny of your device by simply clicking "Yes" while downloading these dozens of games to an unknown commend? Because I think this should be a lesson to you not to ever give kids to play with your phone whose got asset worth more than $1000 and above. Because it would have been better you had bought your kid a smaller phone to play with, rather than giving him or her to play with phone whose asset inside worth $43,000.

If this story is true and OP’s wallet was indeed hacked, then initially it was reckless to store all the savings in one wallet, especially a mobile application wallet.

Having $43,000 and not being able to buy a hardware wallet (~$70-100) looks strange and reckless.

Well, maybe the hacker is waiting for the bull run to start to multiply his profits.

You have already been asked for the public address of your wallet to verify what was said. I would also be curious to see an address that would confirm that the hacker didn't move the stolen funds. Without proof, the story looks unfounded.

This is the price of "being your own bank". It was necessary to take a more careful approach to the issue of safe storage of savings.

What to do? Recognize and accept losses, and then start over.

The OP story sounds like some very poorly low budget series. It is not because the story is not true but because of the confusion in the use of words and numbers in the write up. Anyways from the little I was able to pick up from it, it is obvious that he/she made some mistakes.

- You allowed your four-year-old play with you phone which could have lead to unintentional security breaches
- You relied on the Samsung Secure Folder for security
- You believed that having Kaspersky and Avast enabled guarantees complete security
- You lacked a complete understanding of security risks. If you didn't you would have opted for a hardware wallet over Trustwallet, a closed sourced wallet after all these years.

Well, sorry about this but, I hope you have learned a very valuable lesson.

I am not new to TrustWallet because for some years of using it on my Android phone I have never experienced such a problem wherein a single transaction that I am not aware of was succesfully initiated. I just don't understand what was happening to your wallet OP but I am sure that you have done an error. I personally put a password on my app and it even has fingerprint enabled for extra security so yeah I don't know how you got hacked.

Once an investment such as BTC is hitting a point of $500, you need to be very more careful about the storage... choose a cold storage means for storing your coins. I don't really know why OP choose Trust wallet actually,  it is a self claimed open sourced but they still shield some stuffs to the public which still makes them  close sourced to public no matter how they seem to  claim open sourced.
For such amount, you should have an HD wallet /watch only wallet, get a device that will always stay cold to sign your transaction every time you need to , still don't know why you didn't learn those because  it really  sucks  to get hacked using Trust walet

I show empathy on this matter but until you at least show us some transaction proof, I can't believe this. I've read all you had to say in the subsequent replies but you have always dodged the proof, so how do we believe you even if we want to?

However, for educational and preventive purposes, giving your child the phone you have the crypto wallet is not a matter, but if you are not the only one having access to the child while he/she holds the phone unlocked, then it is an issue. You might not know when someone will be monitoring you due to what they see in it, and if the person is experienced with cryptocurrency, such might find a way to search you better and eventually locate the seed phrase in your drawer, trust nobody about it.

At times too, it may not be an internal job, your phone could be hacked. This is why it is dangerous to download games and many others that could be dangerous on our phones, especially phones with financial assets. What if malicious files are attached? Malware may be included depending on the source of the download.

I thought it was $43k worth of BTC not 43k BTC, didn't notice what Op wrote earlier, I just believed it was $43k earlier because it was not even possible that someone would be able to still 43k BTC Currently and the entire crypto space won't be aware of it now.

I just couldn't believe that someone will be having $43k worth of BTC and be using Trustwallet, while I would have gotten an hardware wallet for such amount there's still others who will just find an alternative to use but least use wallet like Electrum, Bluewallet or any other really good Bitcoin only wallets that are open source.

Another reason why I will consider you a newbie because device were coins are stored ain't ought to be used others with and not especially putting games.

I wonder if your son or anyone else as anyway to access the Samsung secure folder whereby giving an application access to it, if they possibly ask i guessed only malware could request this.

Secure folder means nothing...

If you don't understand about cyber security , you should have paid for a software which guarantees safety, i.e. a hardware wallet.

Trezor is the best nowadays imo.

No way, it's 43,000 BTC  . I think he meant BTC worth $43,000
43,000 BTC is now worth , No way someone can keep such an amount in a closed source software wallet especially given that he has been doing crypto for a while.

Also, I don't think Bingx and most exchanges can let you withdraw 43,000 BTC at once. Max daily limit at Bingx is $5M for an account with advanced verification.

---

OP, I have a feeling your seed phrase somehow leaked somewhere. The other loophole was using trust wallet, which is not an open source wallet. I think they even had a bug that was exploited sometime back involving their app.

Trust Wallet to reimburse users after $170,000 security incident

I can't understand, the author of the topic, write normally how much was (allegedly) stolen from you - $43000 in bitcoins or 43000 BTC. Because I personally do not understand this combination "$43,000 BTC".

If your hacking is true then I sympathize with you.  Because it is a matter of financial loss for you. But one thing is very important that why you kept your hard earned bitcoins in a wallet, why you didn't keep them in a hardware wallet. Also why do you choose to have all your bitcoins in one wallet why don't you store your bitcoins in multiple wallets? Lastly, in case you have been hacked, no one can assure you that your hacked bitcoins can be recovered.  If the hacker wants to give you back you can give back but if he doesn't then your bitcoins will be lost forever.

You are absolutely right, without correct information, there is an attempt to attract users with baseless information. If 43 thousand dollars has been hacked then it must have been hashed and the hash must be shared here to confirm whether it was actually hacked.

How expensive are you talking about? The man has over 2.5 (!) billion dollars (allegedly). The cost of a hardware wallet is nothing to him.


Show the ID transaction. But don't say you don't have it. The wallet has all the information.

Thank you very much for everyone's response and sympathy. The past few months have been tough for my family and me; unfortunately it's too late for me to use a hardware wallet.

My purpose in raising this issue is to know how my money was stolen and why the hacker/thief didn't cash out the money after a few months.

Let me also mention this point: I transferred $43K BTC from Bingx to Trustwallet, and the unauthorized withdrawal made from Trustwallet Wallet in about 24 hours later; it was not withdrawn immediately.

If my phone is infected with malware, how did it access the Samsung secure folder? How did it bypass verification by fingerprint?

In as much as I feel so much sorry for you if this is true, I will still consider you a newbie simply because you're using trust wallet for bitcoin and such about of bitcoin there.
Being in the crypto space for years doesn't makes one stop being a newbie instead what they practice and your actions is an example of one.

You could have gone for an hardware wallet while if it was too expensive for you at least go for good Bitcoin only wallets  like electrum and bluewallet.

Based on Op, post and above reply I guessed he posted this because the hacker has not moved the funds which is quite surprising him to him.

Though I'm still wondering like Xal0lex why he chooses not to share the address or is requesting to show it to moderators only

Why moderators, exactly?

There is no reason to lie; I can send all detailed information and proof to any forum moderators.

I should mention that, as I installed Trust Wallet in the Samsung secure folder and was relieved about its security, I let my four-year-old son play with my phone, and he installed dozens of games on the phone—but in the main area, not in the secure folder!

Yes, I wrote the phrases on a piece of paper in my desk drawer, and no one knew about its existence. Besides, not many people come and go to our house.

I asked every expert, they said that it is not possible to hack Trust Wallet by downloading or installing an app or any similar way. And in my case, there are two basic possibilities:

Someone somehow got access to my phrases, or there was a security hole in the Trust Wallet app (probably on the dark web).

The strange point is that the hacker or thief still hasn't cashed out after three months. Even if he/she does, I can't do anything, but it's strange to me why he/she doesn't.

I am also a Samsung Series S user and the phone I am currently using is a Samsung Galaxy S22, which is your question, why do you put your Trustwallet application in the Samsung Safe Folder, I myself use that folder for pictures which are quite private, I believe you have too much installing other applications that make you unaware that your smartphone has been compromised. However, you should keep your seed trust wallet phrase in a safe place, regardless of whether your story is fake or not, I'm sorry for your loss

I will also have to agree with the first commenter. We have seen a lot of fabricated stories here on this forum shared by users who want to seek sympathy from community members. 
 
But let's give you the benefit of the doubt. Even if you are sure that you did not expose your phrase to anyone, how sure are you that since you have been using the phone to browse through the internet, you might not have clicked on a phishing link that might have installed malware on your phone? 
 
And secondly, where did you store the backup of that wallet you are talking about? Was it also inside the phone, or did you store the wallet backup somewhere else? Because you can't tell me that you will have a holding of $43k without thinking of backing the wallet up. 
 
Another thing too: can you share with us the wallet that was hacked and the balance emptied? At least have a have a wallet that holds such an amount that was moved out recently, and if that's done, will you also be able to sign in a message if you are asked to in the wallet?

How much, how much was stolen? 43к?  Can I see your wallet address to confirm what you're saying? In general, you are telling a completely untrue story, IMHO.

Hello,

About three months ago, at the same time as the bad news about the security issue of Trust Wallet on iPhone, I got hacked on my Android phone, and all the money I had was stolen! I am not newbie, and I have been using Trust Wallet for more than four years, even with more significant amounts without any problem, a topic that confused me:

I installed the trust wallet app in the Samsung Secure folder with only V2ray VPN and no other app (the Samsung Secure folder is a sandbox environment with an additional security layer guaranteed by Samsung Knox); also, Kaspersky and Avast were enabled on my device! I don't understand how I got hacked!! I am sure that no one had my key phrases! I didn't connect my wallet to anything, any airdrop, any NFT ...

The strange point is that the hacker or thief still hasn't cashed out after three months. Even if he/she does, I can't do anything, but it's strange to me why he/she doesn't.

Sadly, All the wealth I had built up over the years is gone, and I don't know what to do.