What could have went wrong?

[YellowSwap]

I am trying to figure out how this person must have lost their keys to scammers or maybe someone have access to their devices behind their back I don't know.

What do you think happened here?



This happened to a user on Reddit and I feel we can learn one or two from it.
Here is the only explanation that the victim dropped.




Here is my own believe, and it's based on the response that this victim dropped.
Keeping your seed away from everyone still can't stop this scam losses if you are careless.
This person must have misplaced their recovery seed somehow since he claimed to have forgotten where he kept the seed phrase.
Maybe he even uploaded the recovery seed inside his personal email account.

The gut he has to keep storing funds on a crypto wallet that he can't remember where he kept the recovery seed is the most irresponsible thing sentence I've read online this year. I hope this teaches someone a lesson about how important it is to keep recovery seed very safe first before storing funds on the crypto wallet.

Audience, please tell me what you see..

[SeriouslyGiveaway]

I am trying to figure out how this person must have lost their keys to scammers or maybe someone have access to their devices behind their back I don't know.

What do you think happened here?

Who knows what actually happened?
It can be wallet seed phrase lost somehow.
It can be a computer compromised, a wallet stolen by that technical and security accident.

This happened to a user on Reddit and I feel we can learn one or two from it.
Here is the only explanation that the victim dropped.

It does not give too many details on why the wallet was compromised but let's see one thing. That person used the Trust wallet, that is not a good wallet. It's close source, and wallets are recommended to use if they are open source wallets.

https://walletscrutiny.com/?platform=allPlatforms&page=0&query-string=Trust

[Ambatman]

Since you are talking about Microsoft I recalled this post Scam trick to password reset with phising link using 'rn' instead of 'm'
Scammers used rnicrosoft instead of Microsoft.

This person must have misplaced their recovery seed somehow since he claimed to have forgotten where he kept the seed phrase.

I doubt it could have been the cause
Him saying he doesn't know where he kept it means it's quite hard to locate
And the loss could be malware.

[Fivestar4everMVP]

Since he mentioned getting email messages from Microsoft about unusual sign in behavior probably on his account, there is the possibility that he uploaded the wallet seed phrase or private key to his Microsoft account and may have forgotten, remember he clearly said he can no longer remember where he kept the seed phrase to the wallet, so this is obviously a case of absolute carelessness here..

The user is absolutely irresponsible and I don't want to say he deserves losing this fund as a lesson but it's indeed looking like it, we know that thing about life being a brutal teacher to those who refuse to learn from other people's mistake..

Some may want to say that trust wallet can no longer be trusted and that there is a possibility that the loss of fund came directly from the wallet, but i honestly don't think this is the case, he stored his seed or private key online on his Microsoft account, and since the account was hacked, the hacker gained access to the seed or keys of the wallet and stole the funds.

[HajiBagi]

I am trying to figure out how this person must have lost their keys to scammers or maybe someone have access to their devices behind their back I don't know.

What do you think happened here?



This happened to a user on Reddit and I feel we can learn one or two from it.
Here is the only explanation that the victim dropped.




Here is my own believe, and it's based on the response that this victim dropped.
Keeping your seed away from everyone still can't stop this scam losses if you are careless.
This person must have misplaced their recovery seed somehow since he claimed to have forgotten where he kept the seed phrase.
Maybe he even uploaded the recovery seed inside his personal email account.

The gut he has to keep storing funds on a crypto wallet that he can't remember where he kept the recovery seed is the most irresponsible thing sentence I've read online this year. I hope this teaches someone a lesson about how important it is to keep recovery seed very safe first before storing funds on the crypto wallet.

Audience, please tell me what you see..

No one knows how this happened even the person they scammed but it looks like he is kind of person that always click on links whenever he received them, there is no way someone will get into your wallet without not having your seed phrase, it will be very hard to know who and how the person get his seed phrase but I can tell you that it may be someone who is very close to him, he might get his seed phrase linked out also because some of us are very careless that we don’t hide our seed phrase properly.

I feel sorry for the person because there is nothing he can do about it, we should be very careful and protect our seed phrase like the way we are protecting our own lives, our future depends on our investment and if anything happens to it we makes us back to zero, some of us can not afford to lose it and that makes some people want to commit suicide, we should always remember that scammers are always around us.

[NeuroticFish]

From what coins I see there I think that this topic may easily end up in Altcoin discussion.
If those are only tokens eg on ETH network then there are exploits there I don't know.

However, let's see bitcoin world and non-custodial wallet which may be OP concern.
- backup seed kept in cloud, email, desktop or places you forgot that your Windows or whatever cloud software copies
- backup written into a file eg. to get it printed, even if deleted afterwards
- whatever AI tools installed
- seed nicely on paper, but noticed/copied by somebody you know
- keylogger or other malware/exploit installed either on the phone, either where the seed is (keep in mind that a hot wallet knows the seed and a malware can probably copy it)

I get no gains for advertising it, but my recommendation is to get a hardware wallet (you can get it easily at under 100$, but you need to research a little), generate there new seed, back it up properly (this includes also verifying the written seed by recovering it on the HW) an safely, completely offline, ever.
Then, if you are not doing anything exceptionally foolish / careless, you should be good.

PS. This will reduce the option for wallets to be used and coins to be kept safe, but for a bitcoiner that's not an issue

[Mia Chloe]

~snip

Lol I'm still pretty baffled how much people trust this so called trust wallet at this current situation of the internet. I've said this before and truth is you are at a higher risk if you are using a wallet that signs smart contract because it's one common way coins are being stolen these days.

As for the OP it is obvious he visited a phishing link cloaked  with the microsoft name which was how his coins were moved. There are multiple scenarios how they pulled it off from that fake email and smart contracts is just one of them.

[Nwada001]

Until the OP gives more details about how the wallet was compromised, all we can do is speculate, but the higher chance of how he could have gotten hacked was if he stored his wallet phrase on any of his emails or cloud storage. It doesn't have to be Microsoft; the person involved might have access to other places on his mobile without him knowing because he receives notifications for Microsoft logins. That does not mean that's the only place they gain access to; he should be more careful next time when it comes to protecting his phrase and not be careless up to the extent of not even knowing where the backup is being stored.

[Odogwu-Blockchain]

Are you aware that trust wallet had an issue recently but looking at the screenshot, it shows a different date, the trust wallet compromises happen during the Dec 25 2025 and I don't seem to know how your wallet was hijacked to this extent, if it's not your relatives, it should be hackers or whoever someone having the confidence to take his funds away.

[rbynxx]

There are a lot of ways scammer could stole those and base on experience I haven't had the same knowledge on how it was compromised as well in the first place and just shocked that my bitcoins was gone and good thing it wasn't that huge amount. Could have been sage if it's really stored in a cold storage wallet.

He probably got hooked by a phishing link base on the explanation the victim said.

[coinrifft]

Haven't you guys heard of a Trust Wallet breach recently? Trust Wallet users lose $7 million to hacked Chrome extension.

[Potato Chips]

1. Always consider hot wallets as fragile. Most attacks happen online, I would not keep big amounts in a hot wallet.

2. Trust Wallet is closed source, and their extension has been compromised two times already. Who knows how safe their app is.

You're absolutely right about seed backup. Backups are non-negotiable lol. Honestly, it is best to not dabble in crypto if you can't do backups.

[OcTradism]

1. Always consider hot wallets as fragile. Most attacks happen online, I would not keep big amounts in a hot wallet.

Hot wallets are not as safe as cold wallets, and hot wallets are for small fund storage for regular use. They are connecting to Internet, with more threats that can compromise your hot wallets, and steal your bitcoins.

You can lose your bitcoin by losing your portable devices (smart phones, tablets, laptops) or by any technical and security compromise on your devices.

[Advice] How to secure your Bitcoin wallets.
Bitcoin security guide.
21 tips for securing your bitcoin.

These guides have points on hot wallets and how to store bitcoin in hot wallets.

[dansus021]

What do you think happened here?

This case isn't new I saw it a lot on X/twitter and the other forum as well. The only things like this happen because of a seed phrase leak or private key leak that's all and there is one more thing Smart Contract if this an EVM wallet.

Why does this happen? well lot of possibilities

1. Hacked phone/wallet/browser  this is the most case that I know a wallet usually designed for security first but hacker can know the hidden way or the hidden door. you click some ads lead to an app or site injected virus to your computer and boom the money goes unnoticed.

2. Phising site, yes this can also happen, especially onthe  EVM wallet. There is an ad that offers you something too good to be true, or you win 100 btc from someone that you don't know. In mose cases website need to connect wallet and said "We need to verify you" you connec the wallet and approve couple contract and boom your money gone.

[notocactus]

This case isn't new I saw it a lot on X/twitter and the other forum as well. The only things like this happen because of a seed phrase leak or private key leak that's all and there is one more thing Smart Contract if this an EVM wallet.

Smart contracts can be used to steal money from altcoin users who need to be aware of this risk and revoke smart contracts to be safe.
How to revoke token approvals.
Some tools to revoke smart contract approvals but there are more.

• https://revoke.cash/
• https://app.unrekt.net/
• https://etherscan.io/tokenapprovalchecker

[noorman0]

-snip-
Him saying he doesn't know where he kept it means it's quite hard to locate
And the loss could be malware.

Someone might have a habit of backing up their seeds in multiple locations, including the cloud, and then forget where they are. In the event of an incident, he doesn't lose access, but his wallet is compromised because their Microsoft account, used to access ms. drive or external cloud storage, is also compromised.

[PrivacyG]

Considering their Microsoft account had an unusual sign in, it was probably a computer or a laptop at fault where they had the same Trust Wallet.  It could be a phone too.  But I presume the chances are higher that it was rather a computer.

[Cookdata]

This case isn't new I saw it a lot on X/twitter and the other forum as well. The only things like this happen because of a seed phrase leak or private key leak that's all and there is one more thing Smart Contract if this an EVM wallet.

Smart contracts can be used to steal money from altcoin users who need to be aware of this risk and revoke smart contracts to be safe.

Many people are ignorant of wallet approval permission and I will like to share my personal experience years back so they can learn.
I don't like anything related to Evm because of its complexity, there are too much of them and they roll out EIP occasionally, only shitcoiners play with them frequently.

There was one time I was on Discord, out of no where I click a link from a dev group I was following, it was a clone website very similar to the devs I was following, connected my wallet(thought it was a burner one I had) and some how I saw a notification for wallet approval which I did. After the first, the notification kept on coming like a loop. Approve(1), Approve(2), Approve(3), that's when I knew I was in deep shit. I disconnected and left. I didn't revoke any, just went my daily activities
It was that approval that made my wallet to be drained, I gave an unlimited wallet approval for a smart contract.

Let's go back to OP SCREENSHOT.



You can see they withdraw his USDT and other coin, he had given an approval of USDT through a smart contract somewhere in another website and didn't revoke it and they withdraw his coins. If only he had revoke the approval before now, it wouldn't have been possible to drain his wallet.

[Hazink]

Haven't you guys heard of a Trust Wallet breach recently? Trust Wallet users lose $7 million to hacked Chrome extension.

That was a case of Chrome extension and people using a particular version were majorly affected, and the team promised to compensate all that was affected, which I believe is' a different case unless the affected person who is shared by the op was also among them, but the screenshot suggests otherwise. Over all we should all be careful with the type of wallet we use especially those closed source once's.

[TokenTikas]

It does not give too many details on why the wallet was compromised but let's see one thing. That person used the Trust wallet, that is not a good wallet. It's close source, and wallets are recommended to use if they are open source wallets.

From the transaction screenshot, it is clear that he used Trust Wallet, and that part is correct but it does not mean Trust Wallet is not good, because Trust Wallet has been providing very good service till now. Trust Wallet is a popular crypto wallet that allows users to safely store, send, and receive different types of cryptocurrencies, and it is a non-custodial wallet. To use it safely, there are some security measures and if those are properly maintained, there should not be any problem.

He lost access due to his own negligence and that is why he is now facing this kind of problem. If a person loses access to their wallet because of their own carelessness, there is really nothing anyone else can do about it. The wallet’s private key and security phrase must be kept safely under one’s personal responsibility. It is known that his wallet got hacked because he lost access to his Microsoft account. He was using the wallet while browsing through his Microsoft account, since the seed phrase was saved there, this issue happened. If he had properly secured the wallet’s private key or seed phrase, he would not have faced this kind of problem.