My ADA was s stolen from Yoroi Shelley Wallet

So I looked into it and the wallet is empty except for the rewards for the stake pool. I also researched as you said and the the process I did with the wallet doesn’t appear to be fake. I’m unsure still of how this happened

Why should I uninstall the wallet and down load it again ? What will change ?

Hey Jeff if there is staking rewards in your wallet then I suggest the wallet is authentic however there is quite a few possibilities on how the breach occurred

• Have you asked for help on line and been given assistance buy others via a remote server this is when they are given access to your pc by you to supposedly fix an issue. This comes as a 2 pronged attack first you pick up a bug by simply opening o link in an email or chat groups that trigger a warning to do this or that, and to follow a link to somewhere and the phisher is waiting for the user to contact them, they instruct you on how they will help after several attemps at you trying to fix things your self via their instructions so you hand over access to your PC to this wolf in sheeps clothing where they then attach software to you PC aptly called a trojan which sends them your login and password info as you use your PC in later logs. Google malware and trojan software for a extended explanation.
• have you staked and unstaked from pools before are you sure that the funds have been unstaked from the pool and sent to another wallet
• I suppose that’s why I don’t stake large amounts of my stack as you have to hand over your stack to the owner of the pool offering the rewards not your keys not your crypto
• Was the staking pool on yoroi or 3rd party
• Did you save your seed phrase on your computer if you have had malware installed without your knowledge it will find it
• Assuming that you may have saved your seed phrase on your PC you would need to call the file something maybe you used one like Yoroi seed phrase? as the mal ware search your files it will look for triggers in the file like password or seed. if your gunna save it like this you would save it as something like peanut butter sandwich or bbq songs or poems by jeff that have no trigger words associated with crypto it does say not to do this as you down load wallets but people ignore this warning often.
• Look into buying a good mal ware to download onto your computer this helps clear off un wanted start ups and other phishing scams and improves the running of your pc in general.
• Finally trust noone on line and maybe think sbout abandoning your wallet uninstall it tidy up your pc if its due for an upgrade buy a new one and start over especially if you are going to invest 20k plus into crypto at least have the best possible start cheers

Stake pool was on Yoroi. I did have a note on my iPhones notepad which was titled Yoroi and inside had my spending password, but not my seed phrase. I had a screenshot of my seed phrase in my “hidden” photos folder as well. I’m assuming these were probably my two deadly mistakes

If you spill beetroot on your nice white shirt its hard to remove you bleach it and it looks lovely again however put the fabric under a microscope and the fibre will still have red tinge to some threads. chuck the shirt out and get a new one same as the wallet if its been breached it very hard to clear it off and 2ndly hard to feel confident its not still their waiting for you again a new wallet has a new address and breaks that link to the wallet but the trojan can still be sitting in the background on your computer waiting for you to unknowingly send it the log on info again

When staking, your ADA never leaves your wallet. If that is the case then it is some scam!!

When staking ADA, your tokens never leave the wallet and you can continue using it as if it is not staked. There are 0 risks when staking.

Yes, that is most probably the case.

Never have the password or full seed phrase saved unencrypted on a computer or phone, be it in text or image format. All your images are going to the cloud anyway. If someone got access to the cloud they also got access to the photos. Automated software can easily find such screenshots.

This exact same thing happened to me about a week ago. I had 10,155 ADA stolen from a Yoroi wallet staking pool. I think I traced it back to me cutting and pasting the seed phrase into Evernote. A very hard lesson learned. Does anyone know what it means that the transaction still shows in red as opposed to transactions I made that show in black?

Regarding the seed phrases. There are many methods of how to store it, I guess those could be easily googled.

For those who are not sure what I mean when I mention RAID5 analogy:

• Split the words into 3 chunks. In the case of 24 words: Chunk1 contains the first 8 words, Chunk2 the seconds 8 words, Chunk3 the last 8 words.
• Take 3 papers.
• On Paper1 write Chunk1 and Chunk2
• On Paper2 write Chunk1 and Chunk3
• On Paper3 write Chunk2 and Chunk3
• Store Paper1 at your place, Paper2 at your parents place, Paper3 at some other secure place

To be able to restore the phrase you will need papers from at least 2 locations. If one paper gets lost you will still have the other 2.

This can be extended further to something like RAID6 where we have 4 chunks and store 4 papers at 4 locations which allows us to lose 2 papers and still recover the phrase…

Really heart breaking to hear all your stories. From the sound of it, you are young lads trying to get yourselves some financial freedom and some one just snatched your hard earned savings. May they never have the peace of spending your money.

That said, I would advise not to throw the baby with the bath water. Cardano is not your problem, maybe the person who introduced you to crypto did not fully appreciate the need to advise you on password and seed phrase security.

1. Please don’t store your password or seed phrase on your phone or computer. Most importantly your seed phrase as that overrides the need for a password.
2. don’t use your most common passwords for your crypto accounts. Generate complex passwords that you store offline.
3. Don’t be nosy, if you receive messages or attachments from Unfamiliar sources, ignore them, or open them from a library computer if you feel the need.
4. use a different email for your crypto issues. Preferably proton mail.
5. use an everyday email when trying out some projects.
6. Buy some more ADA, you will need it.

This is why I am hesitant in staking. Did you had the ADA in hardware wallet linked to yoroi?

What do u mean… delegation is 100% safe… you can see wallets with millions in delegation

Hey @Alexd1985

No offense but then what have happened with this user?

yea, as mentioned several times, staking is risk-free. Your ADA never leaves your wallet and the tokens are not locked up.

If anyone requests you to send ADA out of your wallet for staking, it’s a scam.

Indon’t know how but… someone had access to his seedwords or speending password… it’simple

I am using yoroi since 2018-2019 on my phone, performing transactions, stacking and never had issues…

Ooo I’m ignoring suspicious emails, links, giveaways, etc… and I always use official sources…

There are few rules in crypto… if u follow the rules u are fine, if not you can lose the funds very easy

Hi Jeff Hill. I just read your post and all the reply’s. I see that the error you made was NOT fully doing your due diligence on the blockchain and decentralized. I’m very new to this game and as it involved money - lots of MONEY I knew they’re d be scammers involved so SECURITY is essential. I researched (did my due dilligence) for 3 months before I made a move. The result was; I’m responsible for what happens to me. That’s #1 on the list. #2 was “greed” - mine and theirs! This leads to mistakes.
Charles does a great video on security but it’s an hour+ long. Did you watch it?
So what have I learned?
-DON"T leave your coins on any web based wallet. Use a hard one Ledger or Trezor etc. Especially if you have a windows/google computer. Get a Mac and Firefox. They’re both open source and more secure.
-Don,t leave your keys on a computer. Use an Apricorn Secure usb stick. Keep a copy elsewhere that’s secure.
-Don’t search on google for an address or wallet. Go to CoinMarketCap or Coin Geko or GIThub for any coins you are interested in.
-Study the Wyckoff data.
And lastly DON"T be greedy. Hodl and buy the dip!!

Thank you for the advice. When I eventually have the funds to re invest in Cardano I will definitely get a hardware wallet and safely store the key/spending password.

Me to , but my funds are still lost and I don’t know what to do?
I think I just got hacked , but there is nothing to do then right ?
Like how could I get my funds back if I got hacked

Man, everyone is telling you there is nothing you can do so you can stop asking what you can do. If the funds are gone, the funds are gone. We’re all sorry that it happened to you, but this isn’t some game where you can just press Undo and get your money back. All you can do is learn from your mistakes and move forward.

You say your password and recovery phrases were stored safely. I’m curious though, did you have them saved as text in your Notes app? Perhaps you emailed this information to yourself? Did you create any kind of document (word / excel / Google doc) with this information?