Cybersecurity Lesson 001 : Wallet Security - wimsio/universities GitHub Wiki
Cryptocurrency is powerful but comes with risks. Hackers constantly try to steal your coins by exploiting security mistakes. This tutorial will help you protect your digital assets with simple but effective strategies.
Bitcoin's Biggest Theft: How a Miner Lost 25,000 BTC Overnight
-
Understand the Risks
-
Secure Your Private Keys
-
Use Strong Passwords and Two-Factor Authentication (2FA)
-
Be Wary of Phishing and Scams
-
Keep Software and Devices Updated
-
Use Hardware Wallets (Offline Wallets in Cardano)
-
Backup Your Wallet Safely
-
Be Careful with Public Wi-Fi
-
Additional Tips
-
Summary & Checklist
-
Glossary of Terms
-
Private keys are everything: Whoever holds your private key controls your coins. If stolen, your coins are gone forever.
-
Phishing attacks: Fake websites and emails try to trick you into giving away sensitive info.
-
Malware: Viruses and keyloggers can steal passwords and keys.
-
Human error: Losing backups, sharing keys, or using weak passwords.
-
Never share your private key or seed phrase with anyone.
-
Store keys offline or in a hardware wallet.
-
Avoid storing keys digitally on cloud services or email.
-
Use encrypted storage if you must keep keys on a computer.
-
Use long, random passwords with uppercase, lowercase, numbers, and symbols.
-
Don’t reuse passwords across sites.
-
Enable 2FA (Google Authenticator, Authy) on exchange accounts and wallets.
-
Always check the URL before entering wallet info. Look for the correct domain and HTTPS.
-
Avoid clicking links in unsolicited emails or messages.
-
Verify the authenticity of apps before downloading.
-
Never share private keys or passwords with anyone claiming to be “support.”
-
Regularly update your wallet software, operating system, and antivirus.
-
Updates often patch security vulnerabilities.
Hardware wallets keep your private keys offline and are the safest way to store cryptocurrency.
-
Ledger Nano S and Ledger Nano X
Supports Cardano and many other cryptocurrencies. Connects via USB or Bluetooth (Nano X). Works with wallet software like Daedalus or Yoroi. -
Trezor Model T
Another popular hardware wallet compatible with Cardano through third-party integrations. -
Cold Wallets with Paper or Metal Backups
You can create a Cardano wallet offline with tools like Daedalus in offline mode or generate keys manually and store the seed phrase physically on paper or metal for durability. -
Cardano Paper Wallets (less common, more advanced)
A paper wallet is an offline-generated wallet where keys are printed and stored physically, never connected to the internet.
-
Write down your seed phrase on paper or use a durable metal backup.
-
Store backups in multiple secure locations (safe, bank deposit box).
-
Don’t store backups digitally unless encrypted and offline.
-
Avoid accessing wallets or exchanges over public Wi-Fi networks.
-
Use a trusted VPN if you must use public Wi-Fi.
-
Regularly review your account activity for suspicious transactions.
-
Use separate wallets for daily use and long-term storage.
-
Educate yourself continually about new scams and threats.
| Security Step | Done ✔ / ❌ |
|---|---|
| Secure private keys offline | |
| Use strong, unique passwords | |
| Enable two-factor authentication | |
| Beware of phishing & fake sites | |
| Keep software & devices updated | |
| Use a hardware wallet | |
| Backup seed phrase safely | |
| Avoid public Wi-Fi without VPN |
Private Key
A secret alphanumeric code that gives access to your cryptocurrency wallet. Must be kept private at all times.
Seed Phrase (Recovery Phrase)
A list of words generated by your wallet that can be used to recover your wallet if lost.
Two-Factor Authentication (2FA)
An additional security layer requiring a second form of verification (usually a code from an app) besides your password.
Phishing
A scam method where attackers impersonate trustworthy entities to steal sensitive information.
Hardware Wallet
A physical device that securely stores your private keys offline.
Cold Wallet
Any cryptocurrency wallet that is not connected to the internet, such as hardware wallets or paper wallets.
VPN (Virtual Private Network)
A service that encrypts your internet connection and hides your IP address to increase online privacy.