10 Best Tips to Protect your Bitcoin Wallet Private Key or Recovery Seed

It’s a sad fact that the higher the price of Bitcoin and other cryptocurrencies go, the more treacherous safeguarding your assets becomes.

Keep it on an exchange, and you’re guaranteed some sleepless nights waiting for an exit scamming CEO or a hacker to abscond with your virtual assets and prompt your exchange to close shop. Far-fetched? Just ask Quadriga and Cryptopia users.

Software wallets (desktop program/mobile app/browser-based) are no better. Look no further than the phishing attacks on Electrum this year.

Electrum DoS attack (please link to coolwallet.io if you use the image)
Electrum DoS attack

Hardware Wallet- The safest way to store your Bitcoin

The safest way to keep your Bitcoin is on a hardware wallet that acts as a separate, offline layer of security. If you don’t have a hardware wallet like the CoolWallet S, Ledger or Trezor yet, we recommend you get one.

What every cryptocurrency owner should know though is, your security is only as good as the steps you take to keep your private key or seed phrase.

Remember: When you create your Bitcoin wallet, you will generate a private key and seed phrase (12-24 words or numbers) that proves your ownership and allows you alone to restore your funds if something goes wrong with your wallet, just like a password. If you reveal them to someone, that person can steal your crypto.

How to Keep Your Private Keys and Seed Phrase Safe on All Wallets

Note: Hardware wallets protect private keys

Most hardware wallet users don’t have to worry about private keys. Your private key is concealed by the device at all times and nobody, not even you, will be able to extract it. Not all hardware wallets are equal though. The most secure cold storage devices have a CC EAL5+ Secure Element microchip inside, like the CoolWallet S or Ledger Nano.

Please note that the private key tips below apply only to non-hardware wallets.

1. Buy or download DIRECT to avoid a compromised wallet

For hardware wallets:

Make sure it’s a trusted brand and that you’re either buying from the company directly or a trusted reseller. If not, you could become the victim of a supply chain attack, where a malicious party has tampered with your device and installed malware.

For software wallets: (not recommended for use):

Scammers get even trickier. If you decide to use one, make sure your computer or phone is malware-free, and that you install the legitimate version from a direct source, not a modified, tweaked version. Also, be aware of fake apps on iOS and Android’s stores, like this MyEtherWallet app scam

(which we don’t recommend using, as their host device can be hacked): Scammers get even trickier. If you decide to use one, make sure you install the legitimate version from a direct source, and not a modified, tweaked version. Be sure to check the https certificate. Also, be aware of fake apps on iOS and Android’s stores, like this MyEtherWallet app scam

Software wallets can be fake

2. Never buy or accept a used hardware wallet

(…except a CoolWallet S, which is tamper-proof due to its credit card-thinness 😎)

So you decided to buy a secondhand hardware wallet on eBay or Craigslist to save a few bucks. Or even better, that old college friend of yours has a Trezor or Ledger he says he doesn’t use anymore and you can have it for a couple of beers. DON’T.

Source: wallet.fail

Odds are that in 9/10 times, the hardware wallet is fine to use and hasn’t been compromised. However, it is possible to open a USB wallet and install phishing malware or transmitting components. It is also a possibility that your Trezor or Ledger has had its keys extracted, as this video proved last year.

3. Don’t use a pre-generated Private Key/Seed- It’s a SCAM!

A clever trick that scammers play on inexperienced crypto owners is to sell a hacked hardware wallet on eBay or Amazon. You will likely find a little card like this inside the package that contains your 24-word recovery seed.

“Thank you for your using our pre-generated scam seed. Please deposit crypto now so we can rob you. Enjoy your day!”

Newsflash: It’s not your recovery seed. The hacker set this up, has a copy of the recovery seed and is waiting for you to deposit funds which he can then steal.

4. Never use any wallet set up by friends or family

Jesus and Judas. Kane and Abel. Julius Caesar and Brutus. Hell, even Jon and Dani. Friends betray each other and there’s a black sheep in every family. Be very careful when accepting a wallet from people you know. Reason: See number 2 above.

Unless you can generate a unique key/seed and prove that your wallet is original and not tampered with (both software and hardware wallets), it’s better to err on the side of caution. It pays to be paranoid in crypto.

5. Set your wallet up alone.

That means alone. Private. Solo. Don’t ask your wife or husband, a tech bro friend or customer support to help you set up your wallet. Remember, 50% of marriages end in divorce in the US. Just kidding. but seriously. Trust no one. Just follow the simple steps you’ll get there, most wallets are easy to set up. Owning crypto is about taking personal ownership of your finances. It starts with setting up your wallet.

6. Keep your private key/ seed OFFLINE at all times

Write down your private key/seed (safest method)

OK. So you’ve now generated your private key/ recovery seed from an uncompromised wallet. Now, make sure you keep it OFFLINE at all times. .Any information that is connected to the Internet is accessible by someone over the Internet. Ask big exchanges like Binance, Cryptopia,

CoolWallet S uses numbers instead of words. Verify the accuracy of your written seed by adding the numbers up and entering the total amount.

6.1 Never print your private key/ recovery seed

Printing out your recovery seed or private digitizes it and could leave a digital file on your computer.

6.2 Never take a photo of your private key or recovery seed

Remember the iCloud photo leak of celebrities’ most private images a few years back? When you take a photo of your private data and keep it on your phone or computer, you’re leaving your cryptocurrency portfolio at the mercy of your device’s security. Don’t do it.

6.3 Don’t store a copy on your computer, phone or the cloud

6.4 NEVER type your seed/ key on a computer or phone*

Your phone, computer or browser might be compromised and have keylogging software installed. Avoid typing in your private key/

(* unless it’s a last resort in order to restore a lost or locked wallet)

7. NEVER share your key or seed with customer support staff

Just because someone says they work for a company, doesn’t mean they really do. Recently, scammers impersonated Ledger and MyEtherWallet Customer Support with a fake phone number, managing to steal funds from unsuspecting users.

IMPORTANT: No crypto wallet or exchange customer support staff member should EVER ask you for your private key or recovery seed. If they do, get in touch with your wallet provider or exchange and immediately report the incident.

8. NEVER share your info on social media. EVER!

A sucker is born every day, and for every sucker, you’ll find a 1000 fake tweets or replies on Twitter, Facebook, Telegram Reddit and even Instagram just waiting to relieve them of their funds. Don’t be a sucker.

Never send crypto to receive more crypto, and NEVER reveal your private key or recovery seed to anyone on social media. It’s the oldest trick in the book and the most common in crypto. So why is it still so popular with scammers? Because it works! A new sucker, every day.

9. Keep your paper wallet seed safely hidden  at all times

Sh*t happens. While you cannot protect your property from all-natural and and man-made disasters, you should take strong measures to ensure your recovery seed/ private key paper wallet stays better hidden than that picture of Dorian Grey.

Story your paper copy of your seed somewhere hidden and dry, like your safe. If you have a big portfolio, consider an “indestructible” metal seed wallet like Cryptosteel.

10. Use common sense.

Over $1.7 billion was stolen in 2018 from wallets and exchanges. Hackers and scammers are constantly evolving in their methods, and so should you. There are no scams every day. Trust your gut when it comes to using your private key or recovery seed, and don’t fall for tricks that promise you a reward for revealing it. If you’re not sure and if something feels off, do your own research and make double sure. Revealing your private key to a scammer is like opening Pandora’s box, it can’t be undone. Educate yourself and stay safe by following these tips. It’s easier than you think.

The post 10 Best Tips to Protect your Bitcoin Wallet Private Key or Recovery Seed appeared first on CoolWallet S.

You might also like More from author

Comments are closed.