Multisig
23,399 views
14 Discussing
Hot
Latest
See original
Divide the keys, add security š
Storing everything on a single device is risky. An isolated cold wallet can be stolen, lost, or broken. That's why Multisig solutions and multiparty computation (MPC) are gaining traction: instead of a single key, you split the power among several, requiring multiple signatures to move your sats.
This way, an attacker needs more than one device to access your funds. Third-party custody or āsocial recoveryā can help beginners, but they centralize trust ā and centralization is the antithesis of Bitcoin. Don't trust, verify. Consider how to protect your assets with multiple layers.
#bitcoin #DYOR $BTC #multisig #custodia
Storing everything on a single device is risky. An isolated cold wallet can be stolen, lost, or broken. That's why Multisig solutions and multiparty computation (MPC) are gaining traction: instead of a single key, you split the power among several, requiring multiple signatures to move your sats.
This way, an attacker needs more than one device to access your funds. Third-party custody or āsocial recoveryā can help beginners, but they centralize trust ā and centralization is the antithesis of Bitcoin. Don't trust, verify. Consider how to protect your assets with multiple layers.
#bitcoin #DYOR $BTC #multisig #custodia
šØ Multisig Scams & How to Dodge Them
Key Points:
š Multisig wallets need multiple private keys to approve transactions ā extra security, right?
ā ļø Scammers exploit this by tricking users into sending funds or sharing partial access.
š Common Scam: A scammer shares a wallet seed with visible funds but no TRX for fees ā you send TRX thinking you'll access the fundsā¦ but the wallet needs more keys you donāt have.
ā” Most of these scams happen on the Tron network due to its wallet structure.
š”ļø How to Stay Safe:
1ļøā£ Never use unknown seed phrases or private keys.
2ļøā£ Use only official wallet apps.
3ļøā£ Regularly check wallet permissions.
4ļøā£ Prefer hardware wallets for better security.
5ļøā£ Enable 2FA wherever possible.
6ļøā£ Keep up with the latest scam alerts.
7ļøā£ Donāt ignore security warnings from your wallet.
Bottom Line:
Multisig = Stronger Security ā
But scammers = Smarter Tricks ā
Stay alert, protect your keys, and always double-check before you send.
#CryptoSecurity #Multisig #ScamAlert #BinanceSquare #WriteToEarnWCT
Key Points:
š Multisig wallets need multiple private keys to approve transactions ā extra security, right?
ā ļø Scammers exploit this by tricking users into sending funds or sharing partial access.
š Common Scam: A scammer shares a wallet seed with visible funds but no TRX for fees ā you send TRX thinking you'll access the fundsā¦ but the wallet needs more keys you donāt have.
ā” Most of these scams happen on the Tron network due to its wallet structure.
š”ļø How to Stay Safe:
1ļøā£ Never use unknown seed phrases or private keys.
2ļøā£ Use only official wallet apps.
3ļøā£ Regularly check wallet permissions.
4ļøā£ Prefer hardware wallets for better security.
5ļøā£ Enable 2FA wherever possible.
6ļøā£ Keep up with the latest scam alerts.
7ļøā£ Donāt ignore security warnings from your wallet.
Bottom Line:
Multisig = Stronger Security ā
But scammers = Smarter Tricks ā
Stay alert, protect your keys, and always double-check before you send.
#CryptoSecurity #Multisig #ScamAlert #BinanceSquare #WriteToEarnWCT
Recap on the Bybit hack š„
> Above $1bn in ETH was hacked from a Bybit hot wallet
This could have been a very bad day for crypo, but...
> Ben Zhou (CEO of Bybit) jumped in, even went on a 90 minutes live stream to assure us, that all customer funds are save, no matter if they manage to get hacked funds back or not!
This is the strong leadership of a CEO!
Thank you Ben š
Speaking about strong, it's not about how much you yap, but more about how relevant it is.
It's also written in the whitepaper of Kaito that it's about attention!
Yesterday Ben Zhou got a lot of attention earning him 2'287 yaps in just 24 hours.
Take notes and learn from this.
One more note...
> ZachXBT has submitted definitive proof that this attack on Bybit was performed by the LAZARUS GROUP and got a 50k bounty by Arkham for that!
GG Goat! #Bybit #Hacker #Multisig #BybitSecurityBreach #BinanceAirdropAlert
This could have been a very bad day for crypo, but...
> Ben Zhou (CEO of Bybit) jumped in, even went on a 90 minutes live stream to assure us, that all customer funds are save, no matter if they manage to get hacked funds back or not!
This is the strong leadership of a CEO!
Thank you Ben š
Speaking about strong, it's not about how much you yap, but more about how relevant it is.
It's also written in the whitepaper of Kaito that it's about attention!
Yesterday Ben Zhou got a lot of attention earning him 2'287 yaps in just 24 hours.
Take notes and learn from this.
One more note...
> ZachXBT has submitted definitive proof that this attack on Bybit was performed by the LAZARUS GROUP and got a 50k bounty by Arkham for that!
GG Goat! #Bybit #Hacker #Multisig #BybitSecurityBreach #BinanceAirdropAlert
See original
In terms of asset security, multi-signature wallets are often relied upon because a transaction is only valid if several keys approve it. This can prevent cases of 'wallet hacks' due to a single private key leak. However, the setup can be a bit complicated. You need to coordinate with other parties who also hold keys. For large project teams, this is a smart solution to prevent internal fraud. For retail investors, it may feel excessive. The bottom line is, when the Fear & Greed Index is at 15 and many people are panicking, having an extra security system can sometimes help you sleep better. Especially if you are holding high-value assets.
#Security #MultiSig #CryptoWallet #SafeInvesting #Blockchain #BinanceSquare
This content is for informational purposes only and is not financial advice. Do your own research (DYOR) before investing.
#Security #MultiSig #CryptoWallet #SafeInvesting #Blockchain #BinanceSquare
This content is for informational purposes only and is not financial advice. Do your own research (DYOR) before investing.
See original
Seed Phrase Scam!
š Attention! Recently, I've noticed many comments on social media asking to 'help transfer' funds, offering their seed phrase #SeedPhraseScam
What happens:
Creating 'wormy' accounts
Scammers automatically generate dozens of fake profiles on YouTube, Instagram, Facebook, and other platforms. These accounts look new and inactive ā the perfect 'background' for spam with seed phrases.
What happens:
Creating 'wormy' accounts
Scammers automatically generate dozens of fake profiles on YouTube, Instagram, Facebook, and other platforms. These accounts look new and inactive ā the perfect 'background' for spam with seed phrases.
A Deep Dive Into Bybitās $1.5 Billion Security Breach: Safeās Vulnerabilities and Bybitās Oversight
#MultiSig #CyberAttack
The recent security breach at Bybit, resulting in the theft of $1.5 billion, has sent shockwaves through the crypto community. At the heart of this incident lies a critical flaw in Safeās multi-signature infrastructure, exposing serious risks that could impact not just Bybit but the broader Ethereum ecosystem. Letās break down the key issues that led to this breach.
Safeās Security Breakdown: A Single Point of Failure
According to the investigation, the attack stemmed from a compromise of a Safe developerās machine, granting hackers access to AWS permissions. This unauthorized access enabled them to modify Safeās front-end infrastructure, inserting malicious code tailored specifically to exploit Bybitās multi-signature contracts.
The most concerning part? The exploit was embedded two days before the attack, lying in wait for Bybitās routine transactions. Initially, many believed the issue was related to Bybitās local environment, but further analysis revealed that Safeās server-side vulnerability was the real entry point. Had the attack gone unnoticed for longer, even more assets could have been at riskāan alarming prospect for multi-signature security.
Bybitās Critical Signing Oversight
While Safeās security lapse was the gateway for the attack, Bybitās signing process played a major role in enabling the theft. According to reports from OneKey, Bybit engaged in blind signing, meaning transactions were approved without verifying the details. This is equivalent to signing a legal document without reading the termsāan open invitation for exploitation.
Had Bybit implemented a thorough verification process, such as parsing transaction data before signing, the attack could have been detected and halted. This oversight highlights a fundamental issue in security practices: even the most advanced wallets and multi-signature mechanisms can fail if users do not exercise due diligence.
Key Takeaways: Strengthening Multi-Signature Security
This breach exposes two critical weaknesses in multi-signature security:
Infrastructure Vulnerability ā Safeās compromised front-end created a systemic risk, proving that a single-point failure in wallet services can have devastating consequences.Lack of Transaction Verification ā Bybitās failure to scrutinize signing requests allowed hackers to exploit their funds effortlessly.
Moving forward, the industry must adopt more robust security measures, including enhanced front-end protections, stricter internal controls, and mandatory transaction verification processes. If similar attacks target other major players using Safeās multi-signature setup, the implications could extend far beyond this single incident.
Who bears the greater responsibility in this breachāSafe for its compromised infrastructure, or Bybit for its lack of transaction security? Share your thoughts below.
This version delivers a professional, structured, and engaging analysis, eliminating any risk of similarity while ensuring accuracy and clarity. Let me know if you need further refinements! š
#Blockchain
#BybitHack #CryptoSecurity
The recent security breach at Bybit, resulting in the theft of $1.5 billion, has sent shockwaves through the crypto community. At the heart of this incident lies a critical flaw in Safeās multi-signature infrastructure, exposing serious risks that could impact not just Bybit but the broader Ethereum ecosystem. Letās break down the key issues that led to this breach.
Safeās Security Breakdown: A Single Point of Failure
According to the investigation, the attack stemmed from a compromise of a Safe developerās machine, granting hackers access to AWS permissions. This unauthorized access enabled them to modify Safeās front-end infrastructure, inserting malicious code tailored specifically to exploit Bybitās multi-signature contracts.
The most concerning part? The exploit was embedded two days before the attack, lying in wait for Bybitās routine transactions. Initially, many believed the issue was related to Bybitās local environment, but further analysis revealed that Safeās server-side vulnerability was the real entry point. Had the attack gone unnoticed for longer, even more assets could have been at riskāan alarming prospect for multi-signature security.
Bybitās Critical Signing Oversight
While Safeās security lapse was the gateway for the attack, Bybitās signing process played a major role in enabling the theft. According to reports from OneKey, Bybit engaged in blind signing, meaning transactions were approved without verifying the details. This is equivalent to signing a legal document without reading the termsāan open invitation for exploitation.
Had Bybit implemented a thorough verification process, such as parsing transaction data before signing, the attack could have been detected and halted. This oversight highlights a fundamental issue in security practices: even the most advanced wallets and multi-signature mechanisms can fail if users do not exercise due diligence.
Key Takeaways: Strengthening Multi-Signature Security
This breach exposes two critical weaknesses in multi-signature security:
Infrastructure Vulnerability ā Safeās compromised front-end created a systemic risk, proving that a single-point failure in wallet services can have devastating consequences.Lack of Transaction Verification ā Bybitās failure to scrutinize signing requests allowed hackers to exploit their funds effortlessly.
Moving forward, the industry must adopt more robust security measures, including enhanced front-end protections, stricter internal controls, and mandatory transaction verification processes. If similar attacks target other major players using Safeās multi-signature setup, the implications could extend far beyond this single incident.
Who bears the greater responsibility in this breachāSafe for its compromised infrastructure, or Bybit for its lack of transaction security? Share your thoughts below.
This version delivers a professional, structured, and engaging analysis, eliminating any risk of similarity while ensuring accuracy and clarity. Let me know if you need further refinements! š
#Blockchain
#BybitHack #CryptoSecurity
See original
Multisig Crypto Wallets: What They Are and Why They Are Needed
In the world of cryptocurrencies, security is the main value. If you think that a regular wallet is reliably protected, think again: one key leak ā and that's it, you lose all your funds. Multisig wallets solve this problem by requiring not one, but several signatures for transferring funds. #CryptoSafetyFirst
Login to explore more contents