What are the risks of mobile wallets? - page 2.

bob123

legendary

Activity: 1624

Merit: 2481

Quote from: Pmalek on August 24, 2020, 04:33:50 AM

A VPN can be both a great way to hide your identity and a huge adversary of your privacy.

Assuming that you rather trust the VPN provider with your data, than your ISP.
In any other case, a VPN is not beneficial.

This especially means that you shouldn't use a VPN to increase you privacy if you aren't in a developing country (or in the USA).

Pmalek

legendary

Activity: 2730

Merit: 7065

Quote from: oleg8791 on August 22, 2020, 11:36:44 PM

3. Download a VPN to ensure your anonymity online.

Depends on what kind of VPN you use. Have you heard of the Five Eyes or Nine Eyes?
Those are "surveillance alliances" that collect data on their users with the help of their Internet Service Providers and VPNs.

A VPN can be both a great way to hide your identity and a huge adversary of your privacy.
Read about it here > https://restoreprivacy.com/5-eyes-9-eyes-14-eyes/

Lucius

legendary

Activity: 3234

Merit: 5637

Blackjack.fun-Free Raffle-Join&Win $50🎲

If someone wants maximum security when using mobile crypto wallets, in my opinion one of the safest options is that such wallets are used in combination with hardware wallets. Of course, this requires an additional cost in the form of buying an extra device - but it actually gives us a lot of security because private keys and all important operations take place outside the mobile device.

Although if the tips given by other members are applied, the mobile device can be a fairly secure way to store crypto - emphasizing that it shouldn't be large amounts, because despite all the security measures it really doesn't make sense for me to have thousands of dollars worth of BTC on mobile device.

TheUltraElite

legendary

Activity: 2898

Merit: 1253

So anyway, I applied as a merit source :)

Quote from: 9thsky on August 22, 2020, 12:50:19 PM

What security risks are involved when storing bitcoins in a an Android mobile app wallet, and how to minimize (or preferably eliminate) those risks when using one (such as Electrum)?

You can minimise some risks but not eliminate all.

Installing apps outside the official App stores is what many users do for several reasons. This carries a lot of risk which can be eliminated.

Keep the Android version updated which also means buying the new phones since they are created to only last for an average of 2years after which the software support is stopped and you are forced to buy.

Something similar to PC, don't download email attachment from unknown senders, they often contain malware or so.

Also don't share your private keys with others. It is something that everyone should be knowing already but still we have some noobs.

bob123

legendary

Activity: 1624

Merit: 2481

A huge risk is using outdated software.

If you are that type of a person who doesn't update his windows 7 device, then be assured, your mobile is way more secure than your PC.
However, if you are not that careless, you actually need to check what the latest patch for your device is.
Older phones often do not get enough security patches past ~2 years of lifetime. This poses a risk.

Besides that, the obvious things to consider are:

Do not use shady software with tons of permissions needed
Use encryption + backup in case of loss or theft
Keep your mobile up-to-date
Only carry as much with you as you would carry cash in your wallet

tippytoes

sr. member

Activity: 1988

Merit: 275

Quote from: logfiles on August 22, 2020, 04:58:43 PM

1. the most obvious one, It's very easy to lose a mobile device since you move with it everywhere.

Solutions
- Always encrypt your device and all the wallets with very strong pins, passwords or Pass phrases
- Always backup your private keys and seed phrases and keep the safely in a secret place

2. High chances of downloading malware especially if the device is used to access internet all the time. This problem is so common with android devices.

Solutions
- Keep your device's OS always up to date in case of any exploits
- Avoid downloading unnecessary apps which could contain malware. Always download only official apps
- Avoid rooting the phone (common with Android OS)

I believe that's my main issue when it comes to using mobile wallets. Aside from being stolen, the case of getting it crushed or damaged is high. So if you want to use mobile wallets for convenience purposes, you really need to do the above solutions mentioned by logfiles. Because ask yourself, how many phones have passed on your hands? So the phone where you want to install your mobile wallet definitely will not be your last and forever one.

khaled0111

legendary

Activity: 2702

Merit: 3045

Top Crypto Casino

To mitigate the risks of getting your coins stolen when you lose your phone, you have to encrypt your important files or the whole disk. You can do this from the settings page or use a reliable encryption app.
You must also activate the lock-screen feature and use a strong password or a complex pattern.
To avoid drawing the attention of the thief, you can hide your app's icon. Again, you can use a reliable third party app for this or activate the private feature (something like that) from the settings page.

Always keep a back up of your wallet file/seed in a safe location and never keep more coins than you need in your mobile wallet.

ranochigo

legendary

Activity: 3038

Merit: 4418

Crypto Swap Exchange

Quote from: joniboini on August 23, 2020, 02:03:53 AM

Keep in mind that using a VPN or not does not mean improved security. It could even add additional risk of data stealing if you use a free one or even a paid one. Always input your seed/private key offline to avoid this.

Your seeds or private keys shouldn't leave your device in the first place. Connecting to a VPN does help with the anonymity but the impact to the security should be managed fairly well. There's a risk of Sybil attack with SPV wallets but some wallets tries to mitigate this.

joniboini

legendary

Activity: 2170

Merit: 1789

Quote from: oleg8791 on August 22, 2020, 11:36:44 PM

3. Download a VPN to ensure your anonymity online.

Keep in mind that using a VPN or not does not mean improved security. It could even add additional risk of data stealing if you use a free one or even a paid one. Always input your seed/private key offline to avoid this.

oleg8791

newbie

Activity: 48

Merit: 0

The most common risks except the risk of loosing your smartphone are phishing scams and ransomware. How can you enhance your security?
1. Regularly update the software and antivirus solution.
2. Use a reliable password manager
3. Download a VPN to ensure your anonymity online.
4. Use two wallets for cold and hot storage. I like Ledger and Ownr.

ranochigo

legendary

Activity: 3038

Merit: 4418

Crypto Swap Exchange

Quote from: 9thsky on August 22, 2020, 12:50:19 PM

What security risks are involved when storing bitcoins in a an Android mobile app wallet, and how to minimize (or preferably eliminate) those risks when using one (such as Electrum)?

The way Apple and Android designed it's OS makes one more secure over the other. Apple doesn't allow the user to do much with their devices which is a bane if you're looking for a more open software and a boon if you're looking for a device which is more secure.

There's just one inherent risk that cannot be eliminated with mobile wallets; it's portability. There's no way you can prevent people from stealing or yourself from losing your phones if you're bringing it everywhere with you. It's more suitable as a hot wallet to put a small portion of your coins in for daily spending.

pooya87

legendary

Activity: 3472

Merit: 10611

do you carry around all the physical cash you have in your pocket or purse every day? obviously no. you only carry around small amount of cash. that's the same with bitcoin, just because you can physically carry a million bitcoin in a phone wallet it doesn't mean you should. a phone wallet should be considered similar to a purse where you put cash in to carry around even if it has better security.
on top of that it is digital and can be damaged. for example next time you connect your phone to a power outlet to be charged the storage may be damaged and your wallet be wiped.

in short unless you have absolutely no other options, you should not use a phone to store your bitcoins. instead use hardware wallets, paper wallets and other cold storage options.

logfiles

copper member

Activity: 2170

Merit: 1822

Top Crypto Casino

1. the most obvious one, It's very easy to lose a mobile device since you move with it everywhere.

Solutions
- Always encrypt your device and all the wallets with very strong pins, passwords or Pass phrases
- Always backup your private keys and seed phrases and keep the safely in a secret place

2. High chances of downloading malware especially if the device is used to access internet all the time. This problem is so common with android devices.

Solutions
- Keep your device's OS always up to date in case of any exploits
- Avoid downloading unnecessary apps which could contain malware. Always download only official apps
- Avoid rooting the phone (common with Android OS)

The Sceptical Chymist

legendary

Activity: 3500

Merit: 6981

Top Crypto Casino

The biggest risk in my eyes is getting your phone stolen. Since that's always a possibility, I would protect whatever wallet you use with a solid password that won't allow access to your coins unless it's entered correctly. Some wallets use PINs, and I'm not sure how secure those are.

Quote from: hugeblack on August 22, 2020, 01:30:36 PM

Electrum wallet is not the best for a mobile device and you should not assume that your coins is safe just because you use it.

It's definitely got a decent reputation, and I think you could do a lot worse than Electrum for a mobile wallet. I've used it with no problems in the past, as well as Mycelium. There are so many available, and I haven't used most of them but the password security issue goes for any of them--and always back up your wallet with the seed phrase or whatever a given wallet gives you the option to do to back it up.

Quote from: hugeblack on August 22, 2020, 01:30:36 PM

If you are looking for enhanced security, you should not use a hot wallet, but rather cold storage in hardware wallets or well Air gap devices.

Well, I totally agree with that but OP asked specifically about mobile wallets, so I think he's looking to use one.

hugeblack

legendary

Activity: 2688

Merit: 3983

Quote from: 9thsky on August 22, 2020, 12:50:19 PM

What security risks are involved when storing bitcoins in a an Android mobile app wallet, and how to minimize (or preferably eliminate) those risks when using one (such as Electrum)?

Your Android OS is considered safe if you know how to protect it from not installing unknown apps, reducing the phone's connection to the Internet, not downloading a lot of apps, physically saving the device from theft and things that cause it to stop.

Electrum wallet is not the best for a mobile device and you should not assume that your coins is safe just because you use it.

If you are looking for enhanced security, you should not use a hot wallet, but rather cold storage in hardware wallets or well Air gap devices.

9thsky

member

Activity: 240

Merit: 54

What security risks are involved when storing bitcoins in a an Android mobile app wallet, and how to minimize (or preferably eliminate) those risks when using one (such as Electrum)?

Topic: What are the risks of mobile wallets? - page 2. (Read 514 times)