Saving your private key in your email is a lethal move - page 2.

vapourminer

legendary

Activity: 4354

Merit: 3614

what is this "brake pedal" you speak of?

Quote from: Saint-loup on February 18, 2020, 03:22:50 PM

If you use a passphrase for your seed there are really few chances to be hacked. In reality I think they are fewer than losing your sheet of paper or being stolen by someone accessing your home.

sure, IF your passphrase is something like 36 truly random characters. but even then if a seed is compromised i would still create a new wallet (with a new seed) and move the coins over.

the passphrase will slow them down, perhaps for a long time, but would you leave your coin there knowing that? considering youll probably never know someone has accessed your email/seed till its too late?

i wouldnt.

Saint-loup

legendary

Activity: 2604

Merit: 2353

Quote from: ScamViruS on February 17, 2020, 08:07:12 AM

Quote from: noormcs5 on January 12, 2020, 09:43:32 AM

Quote from: akirasendo17 on January 12, 2020, 03:41:24 AM

Putting your keys in your email address is a very risky move indeed, simply because of your email got hack, even if you have backup in your local with the keys, still they can't open your wallet, before you even know it, i suggest here is the way to secure your wallet keys even online check the link
https://bitcoin.org/en/secure-your-wallet#online

Most of us do this mistake, since we are in a hurry we just email the private key to our email or more worse take a picture of it from our mobile as we thinking it is time talking to write it down on a piece of paper. Saving these 5 minutes can cost you a lot of financial damage. Everyone should strictly follow this and never email or take snapshot of the private key.

Yes. I also saved it in my email. But I learned from being a hack victim. My email was hacked once and the hacker got my seed. As a result I lost some of my funds. So you should never save your seed in email. Someone else may get your seed because of your carelessness.

If you use a passphrase for your seed there are really few chances to be hacked. In reality I think they are fewer than losing your sheet of paper or being stolen by someone accessing your home.

vapourminer

legendary

Activity: 4354

Merit: 3614

what is this "brake pedal" you speak of?

Quote from: pooya87 on February 16, 2020, 12:13:39 AM

but remember that whenever you store your secrets in the cloud (whether it is a cloud server or email or anything like it) your secrets could potentially be accessed by hackers and who knows maybe they could some day break the encryption you used too. but storing them offline (like printed on paper) will always remain safer even if the encryption technique was broken someday.

this is my thought as well. once its in the cloud you have no control, and it WILL NOT be deleted everywhere, no matter what they say. so, sooner or later, that super dooper encryption wont be enough. out go your secrets.

this is why my backups are local (well near local i guess).

Subbir

full member

Activity: 798

Merit: 104

🎄 Allah is The Best Planner 🥀

Quote from: dvmmayowa on January 20, 2020, 03:22:33 PM

Quote from: akirasendo17 on January 12, 2020, 03:41:24 AM

Putting your keys in your email address is a very risky move indeed, simply because of your email got hack, even if you have backup in your local with the keys, still they can't open your wallet, before you even know it, i suggest here is the way to secure your wallet keys even online check the link
https://bitcoin.org/en/secure-your-wallet#online

This is more common with newbies, they find it difficult or stressful saving their keys offline, forgetting that prevention is better than cure.
Personally i have my pks printed on papers and stored safely, its the best way so far and its working for me.

You are right that this is often more risky for beginners At first I didn't know anything about it i used to be putting my personal keys in an email and every one my information was hacked. But now i feel the USB flash is that the safest to stop. there's no fear of being hacked and no-one are going to be ready to log in to your ID easily.

ScamViruS

hero member

Activity: 1876

Merit: 721

Top Crypto Casino

Quote from: noormcs5 on January 12, 2020, 09:43:32 AM

Quote from: akirasendo17 on January 12, 2020, 03:41:24 AM

Putting your keys in your email address is a very risky move indeed, simply because of your email got hack, even if you have backup in your local with the keys, still they can't open your wallet, before you even know it, i suggest here is the way to secure your wallet keys even online check the link
https://bitcoin.org/en/secure-your-wallet#online

Most of us do this mistake, since we are in a hurry we just email the private key to our email or more worse take a picture of it from our mobile as we thinking it is time talking to write it down on a piece of paper. Saving these 5 minutes can cost you a lot of financial damage. Everyone should strictly follow this and never email or take snapshot of the private key.

Yes. I also saved it in my email. But I learned from being a hack victim. My email was hacked once and the hacker got my seed. As a result I lost some of my funds. So you should never save your seed in email. Someone else may get your seed because of your carelessness.

o_e_l_e_o

legendary

Activity: 2268

Merit: 18748

Quote from: Saint-loup on February 17, 2020, 07:04:28 AM

But when you're not at home how do you use your seed if you haven't store it online?

Why should you need to? You should only need your seed to recover access to a wallet you have otherwise lost. You don't need it day to day to use bitcoin. If I was going to be away from home for a significant period of time, I might take my seeds with me on an encrypted USB drive, but otherwise they stay firmly on paper only.

Quote from: Saint-loup on February 17, 2020, 07:04:28 AM

Moreover people often complain about losing the sheet of paper where they've written their seed. And it can also be stolen by people accessing your home.

Then back it up multiple times, or use a 3-of-5 (or similar) Shamir Secret Share. I'd also much rather that somebody needs to break in my to my house than needs to break in to my email account.

Saint-loup

legendary

Activity: 2604

Merit: 2353

Quote from: Little Mouse on February 16, 2020, 01:19:43 AM

Quote from: virasog on February 16, 2020, 12:48:43 AM

First of all, the private key should not be stored on the cloud or any email service. But even if you think of doing so, you should first secure your email with strong password and 2fa. Also you should keep your email and 2fa devices as secure as you will like to keep your exchange accounts secure.

It must be never, how much security you want to be, it's not possible as long as you are storing your private key or seed key in the device which has an online connection. You will be compromised although that depends on your holding value.

But when you're not at home how do you use your seed if you haven't store it online?
Moreover people often complain about losing the sheet of paper where they've written their seed. And it can also be stolen by people accessing your home.

o_e_l_e_o

legendary

Activity: 2268

Merit: 18748

Quote from: pooya87 on February 16, 2020, 12:13:39 AM

-snip-

As an addendum to this, if you are planning to encrypt your seed/private key/wallet before uploading it to your email or cloud storage, you should do so on a clean, live OS on an airgapped machine. Much like creating a paper wallet, it doesn't matter how secure the final product is if it was created in an insecure way. Obviously you will need to have your seed or private key in plain text on your computer prior to encrypting it. If you have malware, keyloggers, screen captures, or something else malicious on the computer you are using, it could very well steal your details prior to them being encrypted. Encrypt it on a clean, airgapped machine, transfer to a live machine via clean removable media, and upload to the cloud.

However I also wouldn't recommend this. Offline backups are safer.

Quote from: virasog on February 16, 2020, 12:48:43 AM

But even if you think of doing so, you should first secure your email with strong password and 2fa.

2FA on all your accounts is a good idea, but it should not be relied on. Depending on the type of 2FA you use, it is possible for an attacker to transfer or clone your 2FA method to a device they own, and it is also possible to disable it altogether.

Krislaw

sr. member

Activity: 1204

Merit: 388

Quote from: akopjpuge on February 16, 2020, 01:27:28 AM

I always believe that a forgotten private key or wallet is still the best so far as a definition of unhackable wallet 😁.

Actually, that's the most unsafe wallet because you have no full control over it.
Imagine if an hack happens.

akopjpuge

jr. member

Activity: 236

Merit: 4

I always believe that a forgotten private key or wallet is still the best so far as a definition of unhackable wallet 😁.

Little Mouse

legendary

Activity: 2156

Merit: 2100

Marketing Campaign Manager |Telegram ID- @LT_Mouse

Quote from: virasog on February 16, 2020, 12:48:43 AM

First of all, the private key should not be stored on the cloud or any email service. But even if you think of doing so, you should first secure your email with strong password and 2fa. Also you should keep your email and 2fa devices as secure as you will like to keep your exchange accounts secure.

It must be never, how much security you want to be, it's not possible as long as you are storing your private key or seed key in the device which has an online connection. You will be compromised although that depends on your holding value.

virasog

legendary

Activity: 3136

Merit: 1172

Leading Crypto Sports Betting & Casino Platform

Quote from: Vision2020s on January 10, 2020, 10:57:06 PM

Quote from: Cimmy_revenger on January 10, 2020, 10:08:41 PM

it was my mistake 4 years ago when my email was hacked and hackers got what I saved in that email.
I lost my bitcoin because of that carelessness.
since then I still use the manual method to save by taking notes in a book.
this is the old-fashioned way but it's very safe for me.

And that's the most recommendable way to store your sensitive information but still we have countless amount if Investors storing their information online like email, cloud etc.

The information is out there, anyone doing exactly what they're advice not to do are only doing themselves harm because they'll be the ones to bare the consequences if their emails gets hacked and the sensitive information falls into the hands of hackers. They're just acting out of ignorance. They don't value the coins they have cause if they did, they would had safeguard it like it's a national treasure.

First of all, the private key should not be stored on the cloud or any email service. But even if you think of doing so, you should first secure your email with strong password and 2fa. Also you should keep your email and 2fa devices as secure as you will like to keep your exchange accounts secure.

pooya87

legendary

Activity: 3472

Merit: 10611

Quote from: jerry0 on February 15, 2020, 02:55:12 PM

What about using encryption problem like axcrypt? Wouldn't that be good enough though like if you want to open the email document, you need to put in the axcrypt password? Or is that still not good enough?

i am not familiar with AxCrypt but google tells me that it is an open-source encryption software in which case it can be a good option for encrypting as long as you choose a very strong password (long, random and have mixed case and symbols) for your encryption and use a very strong encryption technique such as AES.

but remember that whenever you store your secrets in the cloud (whether it is a cloud server or email or anything like it) your secrets could potentially be accessed by hackers and who knows maybe they could some day break the encryption you used too. but storing them offline (like printed on paper) will always remain safer even if the encryption technique was broken someday.

jerry0

full member

Activity: 1750

Merit: 186

What about using encryption problem like axcrypt? Wouldn't that be good enough though like if you want to open the email document, you need to put in the axcrypt password? Or is that still not good enough?

dvmmayowa

jr. member

Activity: 122

Merit: 1

Quote from: akirasendo17 on January 12, 2020, 03:41:24 AM

Putting your keys in your email address is a very risky move indeed, simply because of your email got hack, even if you have backup in your local with the keys, still they can't open your wallet, before you even know it, i suggest here is the way to secure your wallet keys even online check the link
https://bitcoin.org/en/secure-your-wallet#online

This is more common with newbies, they find it difficult or stressful saving their keys offline, forgetting that prevention is better than cure.
Personally i have my pks printed on papers and stored safely, its the best way so far and its working for me.

libert19

hero member

Activity: 2520

Merit: 952

When I created my first wallet (on blockchain wallet), I had private key saved on my email, stupid I know, but when you are new you don't know any better. And more often than not, you learn after that mistake costs.

noormcs5

hero member

Activity: 2814

Merit: 618

Leading Crypto Sports Betting & Casino Platform

Quote from: akirasendo17 on January 12, 2020, 03:41:24 AM

Putting your keys in your email address is a very risky move indeed, simply because of your email got hack, even if you have backup in your local with the keys, still they can't open your wallet, before you even know it, i suggest here is the way to secure your wallet keys even online check the link
https://bitcoin.org/en/secure-your-wallet#online

Most of us do this mistake, since we are in a hurry we just email the private key to our email or more worse take a picture of it from our mobile as we thinking it is time talking to write it down on a piece of paper. Saving these 5 minutes can cost you a lot of financial damage. Everyone should strictly follow this and never email or take snapshot of the private key.

akirasendo17

sr. member

Activity: 1106

Merit: 310

Putting your keys in your email address is a very risky move indeed, simply because of your email got hack, even if you have backup in your local with the keys, still they can't open your wallet, before you even know it, i suggest here is the way to secure your wallet keys even online check the link
https://bitcoin.org/en/secure-your-wallet#online

Vision2020s

newbie

Activity: 15

Merit: 12

Quote from: Cimmy_revenger on January 10, 2020, 10:08:41 PM

it was my mistake 4 years ago when my email was hacked and hackers got what I saved in that email.
I lost my bitcoin because of that carelessness.
since then I still use the manual method to save by taking notes in a book.
this is the old-fashioned way but it's very safe for me.

And that's the most recommendable way to store your sensitive information but still we have countless amount if Investors storing their information online like email, cloud etc.

The information is out there, anyone doing exactly what they're advice not to do are only doing themselves harm because they'll be the ones to bare the consequences if their emails gets hacked and the sensitive information falls into the hands of hackers. They're just acting out of ignorance. They don't value the coins they have cause if they did, they would had safeguard it like it's a national treasure.

Cimmy_revenger

sr. member

Activity: 1106

Merit: 252

Dextrust.org #Defi

it was my mistake 4 years ago when my email was hacked and hackers got what I saved in that email.
I lost my bitcoin because of that carelessness.
since then I still use the manual method to save by taking notes in a book.
this is the old-fashioned way but it's very safe for me.

Topic: Saving your private key in your email is a lethal move - page 2. (Read 1712 times)