Hi,
I'd just like to share some suggestions to improve the security of your cold-wallets and private keys.
In general for cold storage wallets only malware could be a real problem and of course losing your wallet data.
1.: Always create a
backup of your wallet data - for most wallets there is an option to create a backup.
If there isn't, you will most likely find the data folder in the appdata directory (type %appdata% into the windows search).
Store this files on an USB flash drive -
DO NOT store it in any cloud! Also always write down your private keys on a paper and store it safely!
2.: If you're using your computer which contains your wallet for everyday activities you may also visit some unknown websites or download things.
It's always possible to download malware and your antivirus won't detect properly encrypted malicious software. These would be some suggestions on how to bypass this possibility:
- If you've got an old computer just reformat it and only use it for cryptocurrency-storage and transactions - don't do anything else on this machine
- Create a new partition on your existing system, install an OS and don't assign it to your main OS - only use it for cryptocurrency-storage and transactions - don't do anything else on this partition.
- Create a virtual machine, encrypt it (there are many guides on how to encrypt a whole system) and only use it for cryptocurrency-storage and transactions - don't do anything else on this VM.
3.: Usually you should never store your private-keys on your computer. For example IOTA only requires your private-key (seed) to log in to your wallet. However some people may do it anyway and it's really annoying
always typing your
private-key by hand. If you're storing it on your computer you should at least
encrypt it. There are tons of ways of doing this (DO NOT use any online-platforms!!!) - however for me the following is
most preferred.
Notepad++ (my default editor anyway) offers the possibility of installing plugins. On of those already pre-listed is an encryption plugin. I'll include a short guide on how to do this at the end.
4.: I think it's not really necessary to say, but
NEVER tell anyone your private-key and don't send any data files.
5.: You could store your important stuff in an encrypted container. Just inform yourself about recent encryption-software similar to TrueCrypt.
6.: Always keep your operating
system up2date - some updates contain security updates or fixes for (critical) exploits
7.: Use a sandbox for running downloaded stuff if the source isn't 100% trustworthy
8.: Well, doesn't really fit here, but if you're using MyEtherWallet you may want to check this:
https://bitcointalk.org/index.php?topic=2822325.msg28909433#msg28909433Now let's come to the promised (short) guide about encrypting your private-key or any other text.
Installing the plugin:- Download Notepad++ (
https://notepad-plus-plus.org/) and install it
- Open Notepad++ go to Plugins > Plugin Manager > Show Plugin Manager
- Select NppCrypt from the list, hit the 'Install' button and allow Notepad++ to restart after installation
Encrypting:- Now you can enter your text (in this case your private-key or whatever you want to encrypt)
- Select (mark) the text you want to encrypt
- Go to Plugins > NppCrypt > Encrypt
- Optional: Select your preferred cipher and mode
- Enter a password, hit 'OK', confirm your password and hit 'OK' again.
- Your text is now encrypted - now you can safe it.
Decrypting:- Go to Plugins > NppCrypt > Decrypt
- If you changed cipher and mode you'll have to change it accordingly
- Enter your password and click 'OK'
- Your text is now decrypted
> Make sure to close the tab or re-encrypt before closing Notepad++
> It's always a risk having your private-key in the chache when C&P it; you can erase it from your chache by running the command
in CMD (
https://www.howtogeek.com/235101/10-ways-to-open-the-command-prompt-in-windows-10/)
Like I said there are more methods of encryption but at least for me this one is most convenient.
I'm not an expert and this are just some suggestions - you'll most likely have to do some Google-research on some of them.
(Small advise: Antivirus programms may not really help against professional malware but it can provide at least some security against crappy malicious stuff - there's no best antivirus but I'd suggest Malwarebytes: Anti-Malware in combination with the Windows integrated antivirus. However using antivirus software may mislead some people to believe they're completely safe - you should always pay attention to your surf behaviour and be careful about any downloads or fishy stuff)
Hope there's something useful for you
Any advice and suggestions will be greatly appreciated!
Regards,
Nestade alias xuNsh1ne
Just a small warning for IOTA-owners... If you created your seed using any online-seed-generator you should immediately generate a new seed offline and transfer your balance to this new seed!!!Guide on how to generate your own seed for Windows and Linux (MacOS not tested, but should also work):
https://bitcointalk.org/index.php?topic=3002939.msg30877844#msg30877844