安全常识
1,096 views
3 Discussing
Hot
Latest
See original
Cathy's wallet being stolen is indeed a basic security mistake that many experienced users might make:
1. Used an Android phone
2. Used an Android phone + unknown VPN client
3. Used an Android phone + unknown VPN client + full permissions input method
If you must use Android, remember to only use open-source methods like v2rayn + proxy or Android devices + soft routing for a permanent solution. This time, although only 600U was lost, if the above points are not heeded, it could be a much larger amount next time. Let's be cautious together.
#安全常识
1. Used an Android phone
2. Used an Android phone + unknown VPN client
3. Used an Android phone + unknown VPN client + full permissions input method
If you must use Android, remember to only use open-source methods like v2rayn + proxy or Android devices + soft routing for a permanent solution. This time, although only 600U was lost, if the above points are not heeded, it could be a much larger amount next time. Let's be cautious together.
#安全常识
Cathy姐玩链游
--
In the early morning of the 28th, my OKX wallet used for gaming was hacked, and 500 sAID from Gaib was transferred away, along with various tokens and a few worthless NFTs scattered across ETH, BNB, BASE, and XLAYER.
I lost about 600u in total... The wallet is ruined.
What's strange is: the theft occurred after I linked my OKX wallet to the Gaib official website on the 25th and unstaked the 500 sAID stablecoins from GAIB, and on the early morning of the 28th, the unstaked sAID had just returned to the wallet when it was immediately transferred away, and then the other tokens and NFTs on different chains were successively transferred away.
Why does it feel like there’s an issue with the unstaking link from GAIB?
The fact that assets across chains were stolen indicates that this was a leak of the private key or the mnemonic phrase.
If I had clicked on a phishing link and authorized it, I would usually only lose assets from one chain, not so many chains being compromised.
However, I have always handwritten my mnemonic phrase in a small notebook stored in a safe; I manually imported my OKX wallet at home, one word at a time, and had no opportunity for leakage.
So how was the private key leaked?
Additionally, during the day on the 27th, I downloaded a VPN client called Kele Cloud and even bought a month of VPN service; this Kele Cloud VPN is also very suspicious.
From the second image, after I downloaded the Kele Cloud VPN client on the 27th, this wallet did not interact with any smart contracts that day.
#钱包被盗
#okx钱包被盗
#VPN
I lost about 600u in total... The wallet is ruined.
What's strange is: the theft occurred after I linked my OKX wallet to the Gaib official website on the 25th and unstaked the 500 sAID stablecoins from GAIB, and on the early morning of the 28th, the unstaked sAID had just returned to the wallet when it was immediately transferred away, and then the other tokens and NFTs on different chains were successively transferred away.
Why does it feel like there’s an issue with the unstaking link from GAIB?
The fact that assets across chains were stolen indicates that this was a leak of the private key or the mnemonic phrase.
If I had clicked on a phishing link and authorized it, I would usually only lose assets from one chain, not so many chains being compromised.
However, I have always handwritten my mnemonic phrase in a small notebook stored in a safe; I manually imported my OKX wallet at home, one word at a time, and had no opportunity for leakage.
So how was the private key leaked?
Additionally, during the day on the 27th, I downloaded a VPN client called Kele Cloud and even bought a month of VPN service; this Kele Cloud VPN is also very suspicious.
From the second image, after I downloaded the Kele Cloud VPN client on the 27th, this wallet did not interact with any smart contracts that day.
#钱包被盗
#okx钱包被盗
#VPN
小流江海:
还有,应该是玩授权了!
Login to explore more contents