NFT & Crypto Security Tips

Hi all, Happy New Year! Another year rolls over and the bear market continues. From a macro standpoint 2023 may be a tough year overall for a lot of people. I’m going to write a quick article on keeping your assets safe in the new year. This may not be all encompassing as new ways to phish and hack someone are constantly coming out. However, if this prevents one person from being drained I’ll be happy.

Guide on avoiding being hacked or phished for your crypto / NFTS

  1. Use a hardware wallet: A hardware wallet is a physical device that stores your private keys offline and signs transactions when you connect it to a computer. This makes it much harder for hackers to steal your private keys, as they would need to physically steal the hardware wallet in order to do so.
    • A few examples of hardware wallets are Trezor or Ledger. Each have their pros and cons and come with different models. Some models have greater support for certain tokens, some have less.
    • Other items to consider when buying a hardware wallet is to buy straight from the vendor. Do not buy it from 3rd party websites as they may be tampered with. Always double check to ensure that your wallet is not tampered with at all.
    • Also, make sure you don’t store your seedphrase online in plain text. Big no no!
  2. Enable two-factor authentication: Two-factor authentication (2FA) adds an extra layer of security to your account by requiring you to enter a code that is sent to your phone or email in addition to your password. This makes it much harder for hackers to gain access to your account, even if they manage to guess your password.
    • A quick tip on 2FA. Ensure you have app authentication rather than SMS. SMS is prone to being sim swapped and you can lose your assets that way. Sim swapping generally happens when a thief / hacker knows a bit about you and contacts your mobile carrier. They could say things such as “i lost my sim, my sim doesn’t work etc”
    • For an in depth guide on sim swapping check out Mozilla explains Sim Swapping
  3. Use strong and unique passwords: Make sure to use strong and unique passwords for all of your accounts, including your cryptocurrency accounts. Avoid using the same password for multiple accounts, and consider using a password manager to help generate and store strong passwords for you. Strong passwords generally consist of upper case, lower case, numbers and special characters of a certain length.
  4. Keep your software up to date: Make sure to keep your software (including your operating system and any cryptocurrency-related software) up to date with the latest security patches. This helps to protect you against known vulnerabilities that hackers might try to exploit. An example of this could be an out of date chrome browser
  5. Be cautious when clicking links: Be careful when clicking on links, especially if you receive them via email or online. Hackers may try to trick you into giving them access to your account by sending you a link that looks legitimate but actually takes you to a fake website. This is notorious in discord where if you do not turn off private messages in public channels you will get bombarded with fake phishing attempts that want to drain your wallet. Always be careful as the messages declare some sort of urgency always with a link that looks very close to the original
  6. Avoid public WiFi: Avoid conducting sensitive transactions (such as logging into your cryptocurrency accounts or making trades) while connected to public WiFi. These networks are often unsecured and can be easily monitored by hackers.
  7. Enable recovery options: Enable recovery options such as phone number or email recovery in case you lose access to your account. This will allow you to regain access to your account if you lose your password or if your account is compromised.
  8. Be aware of social social engineering. Social engineering is when the attacker manipulates someone into letting their guard down or giving information they normally wouldn’t. This is very common on discord / crypto twitter. If it’s too good to be true, avoid it!
  9. If you still want to mint something and you’re unsure about it. Use a burner wallet. A burner wallet is easily created via metamask or your favourite wallet. Don’t have anything in the wallet and don’t give any permissions more than necessary. Don’t keep using it at all afterwards.

I hope these security tips help someone in the future. It’s always good to refresh each year as the need for higher security is going to get higher and higher as we onboard more individuals into web3 / crypto.

Related Articles

  • Custodial Wallets in NFT / Web3 Gaming

    Custodial Wallets in NFT / Web3 Gaming

    Hey all, another article here for the new year. This time I’m going to go over custodial wallets and their use cases in NFT / web3 gaming. I’ll try to explain it from the users standpoint and the companies standpoint with a few pros and cons. What is a custodial wallet? A custodial wallet for crypto or web3 is a type of digital wallet that is controlled and managed by a third-party organization, rather than the user themselves. This third-party organization, often referred to as a custodian, is responsible for managing the private keys and access to the user’s crypto

    Read more

  • Visas in Esports – Why are they important?

    Visas in Esports – Why are they important?

    Back with another article in esports. This time it’s visas! No, not the credit card but actual work visas. What could happen if you don’t have one as a player and don’t help players get them as a tournament organizer? Well, quite a few things actually. Before I begin, this isn’t an exhaustive list of how to get a work visa. Please don’t forego actual legal advice and blame me. It’s always recommended you hire an expert in this. This is my perspective as a tournament organizer and the risks in esports events. Here we go: Work Visas in esports

    Read more

  • Esports – What to look forward to in 2023

    Esports – What to look forward to in 2023

    Overview Esports, in its most basic form, has been there since the 1970s and then revived itself in the 90s with Quake, but it hasn’t been until the past ten years that it has developed into a larger mainstream industry. Like most sectors, this one is currently impacted by significant global events. The return of spectators to live esports events in 2022 was one of the major esports event developments, following the measures put in place as a result of the COVID-19 epidemic. One of the largest cryptocurrency companies in the world, FTX, filed for bankruptcy last month. TSM, one

    Read more

Leave a Comment