And I always wonder if something like that is possible
A couple of years ago, I read about Man In The Middle Attacks by Tor exit nodes. I think they had to remove or replace https-encryption, after which they could replace Bitcoin addresses for their own.Maybe if they managed to install a remote access trojan on the user's computer, they would gain full access and be able to completely manipulate such things.
Or just a malicious browser that replaces crypto addresses.I think I've heard that story too, but somehow it seems to me that hackers who know how to do it are still targeting high-value targets, primarily those who publicly talk about their
"achievements" in the world of cryptocurrency. For those who keep a low profile and do not use CEXs, I believe they are exposed to much less risk.
I think the only way we can protect ourselves from such a scenario is to use air-gapped wallets and separate computers for cryptocurrencies. If hackers don't have access to our devices, then they can't do anything to us.
If you're depositing to an online service, you still need to get their address. A Letter of Guarantee could work, as long as you have their signing address from a previous visit. But I don't think any CEX (or casino) offers that. For some reason depositing is completely trust-based: if they'd say the address you found on their website isn't yours, you can't prove anything.In that case, only mixers are the ones that provide such a service, but I think that there are few who check whether the signed address has a valid message, let's be realistic, how many people even know how to sign and verify an address/message?
As for proof of whether the deposit address belongs to a service or not, probably a screen sample or even a video would not be accepted as proof, considering that they can be faked. I don't know what else to say on this topic, something like that has never happened to me, and I hope it never will.
