zeofarmin (OP)
Jr. Member
Offline
Activity: 374
Merit: 2
|
I don't know this will help other user in here or not.but this tips is usefull to newbie like me.
1. Keep bookmark trusted website There are many fake website like a fake MyEtherWallet spread on social media, email and any grub chat. 2. Use secure password while creating new wallet Use capital letter and number to secure your password. If you want more secure add Symbol in your password 3. Add authenticator if you using website wallet, add Authenticator to your account 4. Install Anti Virus in your device Anti virus is very useful to secure your wallet in your computer 5. Don't using google extension that not official Fake extension can steal your wallet. Like a MyEtherWallet CX
|
|
|
|
jossiel
|
|
January 28, 2019, 04:07:52 AM |
|
1. This has been popular and many already knew it but it's still a good refresher mostly to the newbies. Don't click a link that you are not very familiar with like MEW but they aren't the only website/wallet that has been targeted by phishing sites. Bookmark all the sites that you have been using regularly.
2. You can also add some numbers.
3. Yes, google authenticator or authy
4. It will help to make your usage protected but there's some virus that can penetrate even you have anti-virus. My say on this is to become a very responsible and vigilant user.
5. Use the trusted ones and don't input your wallet details to unfamiliar sites.
|
|
|
|
bernardos
Member
Offline
Activity: 686
Merit: 45
|
|
January 28, 2019, 07:43:04 PM |
|
Never send your private keys over email, google drives or enter them in a form. Fake airdrops sometimes ask for the users private key and this is a sure sign of a scam.
|
Content writer and Croatian translator. Contact me for more information.
|
|
|
BitBustah
|
|
January 28, 2019, 07:47:21 PM |
|
If your serious about security your private keys should never be connected to the internet at all. You should sign all your transactions offline. You should of mentioned that instead of giving these terrible suggestions.
|
|
|
|
bitmover
Legendary
Offline
Activity: 2492
Merit: 6320
bitcoindata.science
|
|
January 28, 2019, 09:35:44 PM |
|
If your serious about security your private keys should never be connected to the internet at all. You should sign all your transactions offline. You should of mentioned that instead of giving these terrible suggestions.
His uggestions were not terrible. All of them are correct. And they are newbie focused, as you are in a beginners and help board. On the other hand, your suggestion is useless for a newbie, as you didn't said how to sign the transaction offline. This means nothing for a beginner. Maybe you are talking about hardware wallet, but you didn't even mentioned it.. So , to sum up, do as op says and use a hardware Wallet. Or Google for air gapped computer
|
|
|
|
leowonderful
Legendary
Offline
Activity: 1624
Merit: 1130
Bitcoin FTW!
|
|
January 28, 2019, 11:37:42 PM |
|
Airgapping a computer's indeed the best way to proceed if you're not willing to buy a hardware wallet. There's a decent article at the bitcoin.it forum explaining the basics of this process if you're not sure how to go about airgapping a computer as well, though I'm sure there's other guides out there on the Internet as well. Hardware wallets have been dropping in price quite a bit recently; I can find a Trezor or Ledger for less than $40 on a site like eBay now, though there's always a security risk with those devices even if they appear to be new. If you do choose to buy a hardware wallet, make sure you're making a new seed upon using the hardware wallet for the first time and you're not using anything already written down as the seed- there's still a scam going around where some wallets come with pre-filled seed recovery codes controlled by a scammer with Ledger wallets. Also make sure to reset the device's settings completely upon receipt.
|
|
|
|
squatter
Legendary
Offline
Activity: 1666
Merit: 1196
STOP SNITCHIN'
|
|
January 29, 2019, 12:21:45 AM |
|
Keep bookmark trusted website There are many fake website like a fake MyEtherWallet spread on social media, email and any grub chat. It's definitely a good practice to bookmark authentic websites like exchanges or web wallets, but this won't save you in a DNS spoofing attack. Since sites like MyEtherWallet depend on the centralized Domain Name System, their registries can be hijacked and users served with a phishing site -- even on the official, correct domain. This happened to MEW not long ago. The best solution is to avoid web wallets entirely.
|
|
|
|
mk4
Legendary
Offline
Activity: 2926
Merit: 3881
📟 t3rminal.xyz
|
|
January 29, 2019, 03:14:24 AM |
|
1. Keep bookmark trusted website There are many fake website like a fake MyEtherWallet spread on social media, email and any grub chat.
And if you want to be safer, you can simply download MyEtherWallet's source code from their GitHub repository[1] and use that instead. 2. Use secure password while creating new wallet Use capital letter and number to secure your password. If you want more secure add Symbol in your password
If we're talking about preventing your password(s) from being bruteforced, then having a password with more characters would benefit you a lot more than just adding symbols here and there on a short password. As much as possible, keep your passwords at 40 characters minimum. Yes, it might be too much to memorize, but here's where password managers comes in. Take a look at KeePass[2].
[1] https://github.com/MyEtherWallet/MyEtherWallet[2] https://keepass.info/
|
|
|
|
joniboini
Legendary
Offline
Activity: 2380
Merit: 1806
|
|
January 29, 2019, 03:33:34 AM |
|
4. Install Anti Virus in your device Anti virus is very useful to secure your wallet in your computer
I choose to use GNU/Linux instead of Windows, so this might be an additional option. GNU/Linux is easy to use and it's great for work/productivity unless you want to use your computer for gaming. I've been using Linux for years now and don't plan on going back to Windows (I might buy a new laptop with Windows just for the sake of playing PES). Antivirus is great but it's also important to learn how to verify file signature. In case of DNS attack, an attacker could redirect you to their site to download a malicious file (which is created with the same look as the original), just like what happens with Electrum (not exactly the same but I hope people got the idea). There's a lot of tutorial on the internet about this, so maybe it's quite easy to learn too.
|
| CHIPS.GG | | | ▄▄███████▄▄ ▄████▀▀▀▀▀▀▀████▄ ▄███▀░▄░▀▀▀▀▀░▄░▀███▄ ▄███░▄▀░░░░░░░░░▀▄░███▄ ▄███░▄░░░▄█████▄░░░▄░███▄ ███░▄▀░░░███████░░░▀▄░███ ███░█░░░▀▀▀▀▀░░░▀░░░█░███ ███░▀▄░▄▀░▄██▄▄░▀▄░▄▀░███ ▀███░▀░▀▄██▀░▀██▄▀░▀░███▀ ▀███░▀▄░░░░░░░░░▄▀░███▀ ▀███▄░▀░▄▄▄▄▄░▀░▄███▀ ▀████▄▄▄▄▄▄▄████▀ █████████████████████████ | | ▄▄███████▄▄ ▄███████████████▄ ▄█▀▀▀▄█████████▄▀▀▀█▄ ▄██████▀▄█▄▄▄█▄▀██████▄ ▄████████▄█████▄████████▄ ████████▄███████▄████████ ███████▄█████████▄███████ ███▄▄▀▀█▀▀█████▀▀█▀▀▄▄███ ▀█████████▀▀██▀█████████▀ ▀█████████████████████▀ ▀███████████████████▀ ▀████▄▄███▄▄████▀ ████████████████████████ | | 3000+ UNIQUE GAMES | | | 12+ CURRENCIES ACCEPTED | | | VIP REWARD PROGRAM | | ◥ | Play Now |
|
|
|
Juggy777
|
|
January 30, 2019, 08:38:55 AM |
|
I don't know this will help other user in here or not.but this tips is usefull to newbie like me.
1. Keep bookmark trusted website There are many fake website like a fake MyEtherWallet spread on social media, email and any grub chat. 2. Use secure password while creating new wallet Use capital letter and number to secure your password. If you want more secure add Symbol in your password 3. Add authenticator if you using website wallet, add Authenticator to your account 4. Install Anti Virus in your device Anti virus is very useful to secure your wallet in your computer 5. Don't using google extension that not official Fake extension can steal your wallet. Like a MyEtherWallet CX
Hey these are good advices for newbies, recently many users fell for the Electrum wallet scam, where the PC version asked them to update it, many didn’t even realise they were being scammed. I feel if you need to update only visit the official site, and update it from there. It seems you missed one important tip, never do any transactions on a public and unsecured network, 99% chances are your data will be hacked.
|
|
|
|
Chadme
Jr. Member
Offline
Activity: 190
Merit: 3
|
|
January 30, 2019, 09:55:12 AM |
|
i am still not using MYEtherWallet but i think all those tips are good for protect wallet . As like as me newbies are should follow those tips to secure wallet and keep protect from hacker .
|
|
|
|
Lucius
Legendary
Offline
Activity: 3430
Merit: 6151
Crypto Swap Exchange🈺
|
|
January 30, 2019, 10:36:00 AM |
|
Hardware wallets have been dropping in price quite a bit recently; I can find a Trezor or Ledger for less than $40 on a site like eBay now, though there's always a security risk with those devices even if they appear to be new.
I would never consider buying hardware wallet from anywhere, except directly from the manufacturer. It's very sensitive device in terms of security, and I think that saving a few dollars is not worth the risk. Even if user reset device there is always possibility that hackers modify hardware in some way, so you can get completely fake device. Regarding OP advices, they are good, but in addition to good antivirus every device should have firewall and extra antimalware protection. Such software should be regularly updated with new versions and with daily anitivirus/malware definitions. Also every browser need adblock, it will prevent to user see bad ads when using search engines, and most of them are related to phishing sites and fake crypto wallets.
|
|
|
|
Pmalek
Legendary
Offline
Activity: 2954
Merit: 7554
Playgram - The Telegram Casino
|
|
January 30, 2019, 07:26:37 PM |
|
#1 Should be getting a hardware wallet.
Regarding the MEW attack that happened a few months ago where the DNS was hijacked and many users who logged in lost their tokens. Those who had hardware wallets like a Nano S didn't. Because you need physical access to a hardware wallet in order to send funds from it. So a hacker can't do it without having your wallet in his hands + knowing your pin code.
|
|
|
|
▄▄███████▄▄███████ ▄███████████████▄▄▄▄▄ ▄████████████████████▀░ ▄█████████████████████▄░ ▄█████████▀▀████████████▄ ██████████████▀▀█████████ █████████████████████████ ██████████████▄▄█████████ ▀█████████▄▄████████████▀ ▀█████████████████████▀░ ▀████████████████████▄░ ▀███████████████▀▀▀▀▀ ▀▀███████▀▀███████ | ▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄ Playgram.io ▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀ | ▄▄▄░░ ▀▄ █ █ █ █ █ █ █ ▄▀ ▀▀▀░░
| │ | ▄▄▄███████▄▄▄ ▄▄███████████████▄▄ ▄███████████████████▄ ▄██████████████▀▀█████▄ ▄██████████▀▀███▄██▐████▄ ██████▀▀████▄▄▀▀█████████ ████▄▄███▄██▀█████▐██████ ██████████▀██████████████ ▀███████▌▐██▄████▐██████▀ ▀███████▄▄███▄████████▀ ▀███████████████████▀ ▀▀███████████████▀▀ ▀▀▀███████▀▀▀ | | │ | ██████▄▄███████▄▄████████ ███▄███████████████▄░░▀█▀ ███████████░█████████░░█ ░█████▀██▄▄░▄▄██▀█████░█ █████▄░▄███▄███▄░▄██████ ████████████████████████ ████████████████████████ ██░▄▄▄░██░▄▄▄░██░▄▄▄░███ ██░░░█░██░░░█░██░░░█░████ ██░░█░░██░░█░░██░░█░░████ ██▄▄▄▄▄██▄▄▄▄▄██▄▄▄▄▄████ ███████████████████████ ███████████████████████ | | │ | ► | |
[/
|
|
|
lobcmt2
|
|
January 31, 2019, 03:02:52 AM |
|
If your serious about security your private keys should never be connected to the internet at all. You should sign all your transactions offline. You should of mentioned that instead of giving these terrible suggestions.
Or the computer in which funds/ private keys stored should not be used to for unnecessary stuffs. For me, I dedicate one computers to use for trading, only for trading on well-known exchanges, nothing more than that.
|
|
|
|
squatter
Legendary
Offline
Activity: 1666
Merit: 1196
STOP SNITCHIN'
|
|
January 31, 2019, 06:31:55 AM |
|
#1 Should be getting a hardware wallet.
Regarding the MEW attack that happened a few months ago where the DNS was hijacked and many users who logged in lost their tokens. Those who had hardware wallets like a Nano S didn't. Because you need physical access to a hardware wallet in order to send funds from it. So a hacker can't do it without having your wallet in his hands + knowing your pin code.
Indeed, hardware wallet users don't reveal their private keys at any point in the process -- only signed transactions -- so they're usually safe from these kinds of phishing attacks. You can achieve the same thing by using MEW offline with cold storage instead of using the web wallet.
|
|
|
|
greenlanternlight01
Copper Member
Jr. Member
Offline
Activity: 252
Merit: 6
|
|
January 31, 2019, 09:29:38 PM |
|
Useful advices for the noobs. But I always recommend hardware wallets. I prefer them
|
|
|
|
mudyak99
Jr. Member
Offline
Activity: 304
Merit: 5
|
|
February 01, 2019, 06:19:30 AM |
|
Helpful tips from newbie to newbie. But scammer is very smart. They can send any malware in groupchat to steall your wallet in device
|
|
|
|
LbtalkL
|
|
February 01, 2019, 06:41:44 AM |
|
They are bunch of wallets that needs email too and those are target of scammers and hackers. They are sending fake emails, phishing websites be careful to always check where the email is coming from some looks like really identical. That's a common mistakes to click directly on those emails without checking it.
|
|
|
|
Veerashanka
Newbie
Offline
Activity: 40
Merit: 0
|
|
February 01, 2019, 12:09:35 PM |
|
First Of all Don't use Private Key to Login and Keystore File. Its better to use Metamask along with Brave Browser which has shields to many ads and offers protection.
|
|
|
|
baobao2000
Member
Offline
Activity: 462
Merit: 23
|
|
February 01, 2019, 12:22:00 PM |
|
Very clear information about secure wallet. I think the safest wallet is hardware wallet. There is always a risk as long as you connect to internet. If you have good amount BTC, it is safer to store in a cold wallet or hardware wallet.
|
|
|
|
|