P. 6



                                            BTC WALLET THEFTS

               Things you can do to secure your coins

               In the wake of the attack, I reached out to friends with lots of experience in cryptocurrency and these are
               their tips.

                   •  Don’t talk about Bitcoin Club. Don’t talk publicly online, with your real identity, about your
                       trades or the exchanges. I know it’s too late for some (certainly for me!), and it shouldn’t be like
                       this, but this makes you less of a target. Even if your coins are properly secured.
                   •  If you are going to post on reddit, twitter, etc about cryptocurrency, use a far removed
                   •  Use a separate, secret email for your coin accounts and do not forward the alerts to your personal
                       email account.
                   •  Use 2FA — SMS doesn’t count. I had no idea how easy Verizon and others make it for people to
                       swipe your phone with basic information within minutes. Make sure you use GAuth or Authy or
                       something else supporting TOTP tokens; consider a FIDO U2F device as well for your gmail
                   •  If you insist on leaving your money on, then store it in their “vault”. This will
                       give you a buffer of a couple days before any of your stuff can be touched, at least it won’t be
                       gone immediately.
                   •  Call your cellphone company and tell them you are likely to be targeted for social
                       engineering. Request more scrutiny for making requests.
                   •  Store your coins on a physical wallet. Technically, any money you have in an exchange isn’t
                       yours — you simply have an IOU from the counter party. Best practice for keeping your coins safe
                       is with a hardware wallet like the Ledger Nano S. This is only $60 or so and means that someone
                       will need to physically enter a pin and confirm a transaction or steal your backup seed to access
                       your funds.

               I’m not giving up on crypto

               I joined in 2015, have had various positions of BTC over the years and have seen hype
               come and go. I think we’re nearing a real inflection point with adoption but we’re in a dangerous place as
               the cost of BTC/ETH skyrockets and noobs hit the market.

               Four-hundred-thousand people have joined in the last thirty days. This group has vastly
               different security needs and expectations than the original 400,000 who joined Coinbase in 2012. If this
               new group isn’t protected in aggregate, lawsuits will fly, financial lives will be ruined, and the dream that
   1   2   3   4   5   6   7   8   9   10   11