Author

Topic: Security Steps for Crypto Assets (Read 153 times)

copper member
Activity: 63
Merit: 0
July 28, 2018, 09:57:58 PM
#3
Remember! Do not buy used devices (Trezor, Nano, even USB keys) on eBay or other sites. Buy brand new, non-furbished direct from the manufacturer or reputable sites like Amazon.

There were some cases in the past scammer rigged and sold their crypto hardware wallets!
jr. member
Activity: 101
Merit: 2
July 21, 2018, 09:43:52 AM
#2
Get yourself a Ledger Nano S or TREZOR wallet

Always print backups of wallets, really important keys, Google Authenticator backup codes, via a No-Wifi Printer (You can also write them down in a safe book)

Get USB Drives and be sure not to lose or break them.

Get rid of your clipboard manager, auto-upload screenshot app, remote viewer, they are not safe

Install a password manager and protect it with Google Authenticator

Your Computer

Review your Chrome Extensions and remove extensions you don’t use, don’t need, don’t trust. Disable ones you don’t actively use on a daily basis.
Turn off automatic updates
Use incognito mode when accessing super-secure things like banking and crypto
Don’t ever enter your secret-keys into websites using a browser that has extensions
All applications that start on launch should be disabled except you need it.
Do not install or download application from untrusted websites.

Review your Cloud Storage Software
Disable uploading automatically.
Avoid synchronizing your downloads or desktop or home directory

Remember that things that have been uploaded once are there for life, even if you delete it.
If you discover a password or private key in your Dropbox, start by deleting it. Deleting is not enough so immediately change the password or move your funds.
Change your passwords to new, unique, strong passwords
Never reuse passwords.
Enable 2FA.
If already enabled, disable and re-enable 2FA.
Remove your phone number from a 2FA option.
Generate new backup codes and write them down or print via no-wifi printer and securely removed from your device afterwards.

Review your Chrome Settings
  • Unsandboxed plugin access: Ask when a site wants to use a plugin to access your computer.
  • Location: Ask before accessing
  • Camera: Ask before accessing
  • Microphone: Ask before accessing
  • Flash: Block sites from running Flash
  • Popups: Blocked

Clear your cache, settings, history, etc.

Review your Google, Github, Facebook, Skype, Twitter Accounts and disable all apps that you haven’t used in a while, or the apps you dont recognise.
Log out of all devices and Never Use Public Wi-Fi

Always be careful with your crypto assets... Keep them secured.

Isn't this a bit over-the-top? Unless you're trading millions worth of cryptos a Ledger Nano S or TREZOR wallet will do, no?
Just use the same rules as going online in your home banking application.
newbie
Activity: 54
Merit: 0
July 21, 2018, 04:46:50 AM
#1
Get yourself a Ledger Nano S or TREZOR wallet

Always print backups of wallets, really important keys, Google Authenticator backup codes, via a No-Wifi Printer (You can also write them down in a safe book)

Get USB Drives and be sure not to lose or break them.

Get rid of your clipboard manager, auto-upload screenshot app, remote viewer, they are not safe

Install a password manager and protect it with Google Authenticator

Your Computer

Review your Chrome Extensions and remove extensions you don’t use, don’t need, don’t trust. Disable ones you don’t actively use on a daily basis.
Turn off automatic updates
Use incognito mode when accessing super-secure things like banking and crypto
Don’t ever enter your secret-keys into websites using a browser that has extensions
All applications that start on launch should be disabled except you need it.
Do not install or download application from untrusted websites.

Review your Cloud Storage Software
Disable uploading automatically.
Avoid synchronizing your downloads or desktop or home directory

Remember that things that have been uploaded once are there for life, even if you delete it.
If you discover a password or private key in your Dropbox, start by deleting it. Deleting is not enough so immediately change the password or move your funds.
Change your passwords to new, unique, strong passwords
Never reuse passwords.
Enable 2FA.
If already enabled, disable and re-enable 2FA.
Remove your phone number from a 2FA option.
Generate new backup codes and write them down or print via no-wifi printer and securely removed from your device afterwards.

Review your Chrome Settings
  • Unsandboxed plugin access: Ask when a site wants to use a plugin to access your computer.
  • Location: Ask before accessing
  • Camera: Ask before accessing
  • Microphone: Ask before accessing
  • Flash: Block sites from running Flash
  • Popups: Blocked

Clear your cache, settings, history, etc.

Review your Google, Github, Facebook, Skype, Twitter Accounts and disable all apps that you haven’t used in a while, or the apps you dont recognise.
Log out of all devices and Never Use Public Wi-Fi

Always be careful with your crypto assets... Keep them secured.
Jump to: