I really don’t want to get into details, but i’ll give you this example and I’m out!
I have a fraudster friend/colleague/close person/relatively close person, which tells me, “hey jpsrrv give me your adress I’ll send you some ada!”, and then the route COULD be established. Am I a fraudster? Can you understand the ramifications of legally disputes on this subject?
Bottom line, if you can’t handle the game, don’t play it.
Apart form that these kind of scams are nothing new, the only way they differ from a traditional phishing scam, is in the format - a livestream on Youtube with stolen content from a creditable source. I’m baffled that people actually fall for these “Give me your money, and I’ll give you more in return”. We’re talking about valuable assets. No doubt that the scams are horrible, which just confirms that cynical people with little to no moral exist, but to me the lack of skepticism when faced with scams like these are a lot more concerning. You have to ask yourself on which incentive anyone would give away Ada for free.
Trying to blame this on IOHK, CH or Cardano Foundation is just pathetic, but seems like, for some, a way to project the responsibility for losing theirs funds.
Totally agree with your assessment - the scam should be obvious, but then there are also very trusting and naive parties out there - like me for example. I lost 25,000 ADA to one of these scams and I accept full responsibility for my own mistake. I’m close to 70 years old and not much of a technical person, but still believe that in a truly honest and open network, run by some of the smartest developers on the planet, there must be a way to at least blacklist and/or disable the offending accounts to prevent others from being victimized. Even legacy banks can close fraudulent accounts.
Might be. Because if you use official Daedalus wallet and not installing the scam mobile app + no one know your seed phrase → I don’t have any other idea other than your computer get hacked or somebody else know your seed phrase.
That’s why it’s better to pair your Daedalus wallet with Ledger/Trezor for additional security (they need to have approval from the hardware wallet to do any transaction).
I just started mining uplexa coin few days ago and today actually I did not mine using CPU but only my RX550 on same PC. I’m stunned how fast they can get in to my Daedalus wallet if my PC is hacked. My seed phrase is in my sandisk vault and protected with password. It happened about 7 hours ago and no one opened my Daedalus wallet.
My seed phrase is in my sandisk vault and protected with password. → never ever put it in a storage (harddisk, USB, cloud). You need to write it down in a paper.
I’d recommend writing the recovery phase and storing it very securely (fireproof safe, safety deposit box, etc). Saving it to a file is an open invite for hackers, accidentally deleting it, harddrive failure, etc. → someone wrote it in reddit
It is not Daedalus that has been breached. If this is due to a breach, it is most certainly a breach of your system and the fact that you’d store your seed phrase digitally, which is NOT recommended.
I followed the instruction and it was successful. So it means my spending password is not compromised. I did not store or write it anywhere. I just memorize it. It’s is really very strange.
A compromised seed phrase doesn’t affect the spending password. The spending password is just used for encrypting your seed phrase in the hot environment.
I wish Daedalus could have been more protected like asking for 2FA on top of spending password. In this way I could have been alerted that someone access my wallet.