This post mortem is a bit disappointing in that it recommends assuming your hot wallet is always hacked. This infosec-nihilism is totally useless in practice, so let’s briefly talk about what you can actually do here. https://twitter.com/hughkarp/status/1341063567408328705
The issue is that Hugh’s computer was deeply compromised, and so all software on it was suspect. It would be very unfortunate if the whole world decided computers can’t be trusted, and lots of people manage to get by without being hacked like this. How?
There’s no silver bullet, and there are always dangers of fabled zero-day hacks, but there are still well established practices to keep your computer as safe as possible, for whatever value you have at risk on your computer (your site credentials at the very least!)
If you use Windows like Hugh, and are using your computer to transact millions of dollars, you should get familiar with the security measures that Microsoft recommends:

https://support.microsoft.com/en-us/windows/keep-your-computer-secure-at-home-c348f24f-a4f0-de5d-9e4a-e0fc156ab221
If you’re a Mac user, you can find a similar guide here: https://support.apple.com/en-in/guide/mac-help/flvlt003/mac
Set up your Mac to be secure

Make your Mac more secure by using strong passwords, requiring users to log in, securing your Mac when it’s idle and using FileVault to encrypt data.

https://support.apple.com/en-in/guide/mac-help/flvlt003/mac
iOS users should at least follow the steps in this guide: https://support.apple.com/guide/iphone/use-built-in-security-and-privacy-protections-iph6e7d349d1/ios
Use the built-in security and privacy protections of iPhone

To take maximum advantage of the security and privacy features built into iPhone, follow these best practices.

https://support.apple.com/guide/iphone/use-built-in-security-and-privacy-protections-iph6e7d349d1/ios
For Android users, check out this guide from Google: https://blog.google/products/android/top-tips-keeping-data-safe-and-secure-android/
Top tips for keeping data safe and secure on Android

Learn Android’s top 3 tips for protecting your security and privacy on Android.

https://blog.google/products/android/top-tips-keeping-data-safe-and-secure-android/
If you use Linux, the University of Michigan has some nice guidelines here:

https://safecomputing.umich.edu/protect-yourself/secure-your-devices/personal-computer/linuxunix
Over time, things like multi sig contract accounts can help secure your assets by splitting the keys between more devices, but if you can’t keep a single device safe, then that won’t help much.
Cryptocurrency is built on the belief that computer systems can be secured and distributed enough that we can build new systems of value on them, but if we give up on securing even a single systems, then the whole dream is vapor. Take the time to reinforce your foundations.
You can follow @danfinlay.
Tip: mention @twtextapp on a Twitter thread with the keyword “unroll” to get a link to it.

Latest Threads Unrolled:
Those who think consciousness raising & movement building are disconnected, or even a distraction from electoral politics have not paid attention to the history of social change.In this thread, we
Read more
The 2020s will be known as the Remote Work decadeA few predictions of what is likely to emerge[ a thread ] Third Space: Office and Working from Home will
Read more
1/29: Have you ever had a concept explained to you that helps frame complex issues you’ve been wrestling with and opens your eyes to new possibilities? A concept that I
Read more
By continuing to use the site, you are consenting to the use of cookies as explained in our Cookie Policy to improve your experience.