Vjylku

"Sheng" as a male given name

How can I improve my fireworks photography?

What is Crew Dragon approaching in this picture?

How to mitigate "bandwagon attacking" from players?

Word to be used for "standing with your toes pointing out"

Eww, those bytes are gross

Finding ratio of the area of triangles

Incompressible fluid definition

Finding the number of integers that are a square and a cube at the same time

For Loop and Sum

Quenching swords in dragon blood; why?

Where is this triangular-shaped space station from?

Does this pattern of summing polygonal numbers to get a square repeat indefinitely?

What did I do wrong that caused me to lose bitcoin?

Wanted: 5.25 floppy to usb adapter

c++ How can I make an algorithm for finding variations of a set without repetition (i.e. n elements, choose k)?

Why zero tolerance on nudity in space?

Called into a meeting and told we are being made redundant (laid off) and "not to share outside". Can I tell my partner?

How to prepare vegetables for a sandwich that can last for several days in a fridge?

Avoiding morning and evening handshakes

Does Windows 10's telemetry include sending *.doc files if Word crashed?

Criticizing long fiction. How is it different from short?

Inventor that creates machine that grabs man from future

Do any poskim exempt 13-20-year-olds from Mussaf?

What did I do wrong that caused me to lose bitcoin?

Is it true that as long as you have the public and private key for a bitcoin address, you are safe?“always spend all balance of paper wallets” - Then why am I using my paper-wallet for multiple transactions without any problem?How do I obtain the “Private Key” from my Armory Paper BackupHow Can I Ensure Private Key is Valid on my Paper Wallet?Paper wallet creation, how safe is this approach?Importing paper wallet into ElectrumSending Bitcoin between paper wallet and hardware wallet offlineBTC and BCH and paper walletExtra security for paper walletsPossibility of hardware wallets being 'unsupported' in the future?

1

I've been accumulating bitcoin into a paper wallet for a couple weeks. It's all been stolen. I'm trying to figure out what I did wrong:
https://www.blockchain.com/btc/address/193jdrxMKoUjWLyKm2UCGNXLGGvK1x3FDV

I've been very careful with this wallet. I purchased bitcoin on Bisq. Over time I was sending them to a paper wallet that I generated on bitcoinpaperwallet .com. I printed this paper wallet on a piece of paper hidden inside my house. I never saved the private key anywhere on my computer.

As I transferred funds into the wallet, I would verify they arrived by checking blockchain .com. They always did.

A week ago I transferred a lot more bitcoin to this same paper wallet. Today I checked and the wallet was completely drained, hours after the last transfer and soon after I verified they arrived (using blockchain .com). The bitcoins seem to have been instantly transferred to a bunch of wallets downstream and scrambled.

I'm completely baffled as to what I've done wrong. I searched my computer to make sure I didn't accidentally save the private key somewhere, it's nowhere to be found. But I knew that I didn't do this. I was very careful when generating the paper wallet. The only place the private key is on this piece of paper.

No one in my house knows anything about bitcoin, and anyway, this paper has been kept concealed.

What did I do wrong? Any clues?

P.S. Since I know someone will ask, the reason I didn't use a hardware wallet is that I was going to save this paper wallet on multiple encrypted USB sticks. I don't trust the hardware wallets to be secure and recoverable ~10 years from now when those companies may be gone and their software may be outdated.

paper-wallet wallet-security

share|improve this question

asked 5 hours ago

sucks1717171sucks1717171

62

New contributor

sucks1717171 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Can you elaborate on how you generated the paper wallet? Did you do so in a web browser? Did you save the .html file and then run it while offline? Did the computer that generated the keys ever go online again later? What sort of printer did you use, is it connected to your network? Your answers to these questions may provide clues. Sorry you were robbed :(
  
  – chytrik
  1 hour ago
  

  
  
  
  

add a comment | 

1

I've been accumulating bitcoin into a paper wallet for a couple weeks. It's all been stolen. I'm trying to figure out what I did wrong:
https://www.blockchain.com/btc/address/193jdrxMKoUjWLyKm2UCGNXLGGvK1x3FDV

I've been very careful with this wallet. I purchased bitcoin on Bisq. Over time I was sending them to a paper wallet that I generated on bitcoinpaperwallet .com. I printed this paper wallet on a piece of paper hidden inside my house. I never saved the private key anywhere on my computer.

As I transferred funds into the wallet, I would verify they arrived by checking blockchain .com. They always did.

A week ago I transferred a lot more bitcoin to this same paper wallet. Today I checked and the wallet was completely drained, hours after the last transfer and soon after I verified they arrived (using blockchain .com). The bitcoins seem to have been instantly transferred to a bunch of wallets downstream and scrambled.

I'm completely baffled as to what I've done wrong. I searched my computer to make sure I didn't accidentally save the private key somewhere, it's nowhere to be found. But I knew that I didn't do this. I was very careful when generating the paper wallet. The only place the private key is on this piece of paper.

No one in my house knows anything about bitcoin, and anyway, this paper has been kept concealed.

What did I do wrong? Any clues?

P.S. Since I know someone will ask, the reason I didn't use a hardware wallet is that I was going to save this paper wallet on multiple encrypted USB sticks. I don't trust the hardware wallets to be secure and recoverable ~10 years from now when those companies may be gone and their software may be outdated.

paper-wallet wallet-security

share|improve this question

asked 5 hours ago

sucks1717171sucks1717171

62

New contributor

sucks1717171 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Can you elaborate on how you generated the paper wallet? Did you do so in a web browser? Did you save the .html file and then run it while offline? Did the computer that generated the keys ever go online again later? What sort of printer did you use, is it connected to your network? Your answers to these questions may provide clues. Sorry you were robbed :(
  
  – chytrik
  1 hour ago
  

  
  
  
  

add a comment | 

I've been accumulating bitcoin into a paper wallet for a couple weeks. It's all been stolen. I'm trying to figure out what I did wrong:
https://www.blockchain.com/btc/address/193jdrxMKoUjWLyKm2UCGNXLGGvK1x3FDV

I've been very careful with this wallet. I purchased bitcoin on Bisq. Over time I was sending them to a paper wallet that I generated on bitcoinpaperwallet .com. I printed this paper wallet on a piece of paper hidden inside my house. I never saved the private key anywhere on my computer.

As I transferred funds into the wallet, I would verify they arrived by checking blockchain .com. They always did.

A week ago I transferred a lot more bitcoin to this same paper wallet. Today I checked and the wallet was completely drained, hours after the last transfer and soon after I verified they arrived (using blockchain .com). The bitcoins seem to have been instantly transferred to a bunch of wallets downstream and scrambled.

I'm completely baffled as to what I've done wrong. I searched my computer to make sure I didn't accidentally save the private key somewhere, it's nowhere to be found. But I knew that I didn't do this. I was very careful when generating the paper wallet. The only place the private key is on this piece of paper.

No one in my house knows anything about bitcoin, and anyway, this paper has been kept concealed.

What did I do wrong? Any clues?

P.S. Since I know someone will ask, the reason I didn't use a hardware wallet is that I was going to save this paper wallet on multiple encrypted USB sticks. I don't trust the hardware wallets to be secure and recoverable ~10 years from now when those companies may be gone and their software may be outdated.

paper-wallet wallet-security

share|improve this question

asked 5 hours ago

sucks1717171sucks1717171

62

New contributor

sucks1717171 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

share|improve this question

asked 5 hours ago

sucks1717171sucks1717171

62

New contributor

sucks1717171 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

share|improve this question

asked 5 hours ago

sucks1717171sucks1717171

62

New contributor

sucks1717171 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

asked 5 hours ago

sucks1717171sucks1717171

62

New contributor

sucks1717171 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

asked 5 hours ago

sucks1717171sucks1717171

62

1 Answer
1

active

oldest

votes

2

1) If you generate your paper wallet on your computer, you have to fully trust your computer

2) If you use a website for generating your paper wallet, a) you need to trust that website (hopefully its local javascript) b) your browser and its random number generator and c) eventually your network provider(s) (depending on the transport layer security)

3) If you generate your paper wallet on your computer and it was compromised, the generated paper wallet was accessible at least during the time of your generation.

My recommendation

1. Never ever use a online paperwallet generator

2. Hardware wallets are eventually not super secure, but they offer great security, maybe use them instead of a paperwallet

3. The BIP39 24 word seed can be restored even if the vendor of your HWW disappears

Conclusion:

Use an old offline computer with Bitcoin Core or any other semi-trusted software to generate your private keys or seeds, keep it offline all the time!

Or... use multiple hardware wallets from different vendors in a multisig setup if you want maximal security (but comes with minimal user experience)

share|improve this answer

answered 3 hours ago

Jonas SchnelliJonas Schnelli

5,1851026

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  I said "old" computer because we can assume that older computer have less risks of included hardware based backdoors (like the intel management engine, etc.)
  
  – Jonas Schnelli
  3 hours ago
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Another possible attack vector is the printer, especially if it is a network printer.
  
  – Nate Eldredge
  2 hours ago
  

  
  
  
  

add a comment | 

Your Answer

StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "308"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});

function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: false,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
noCode: true, onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});


}
});

sucks1717171 is a new contributor. Be nice, and check out our Code of Conduct.

draft saved

draft discarded

Sign up or log in

StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});

Sign up using Google

Sign up using Facebook

Sign up using Email and Password

Post as a guest

Name

Email

Required, but never shown

StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fbitcoin.stackexchange.com%2fquestions%2f85038%2fwhat-did-i-do-wrong-that-caused-me-to-lose-bitcoin%23new-answer', 'question_page');
}
);

Post as a guest

Name

Email

Required, but never shown

2

1) If you generate your paper wallet on your computer, you have to fully trust your computer

2) If you use a website for generating your paper wallet, a) you need to trust that website (hopefully its local javascript) b) your browser and its random number generator and c) eventually your network provider(s) (depending on the transport layer security)

3) If you generate your paper wallet on your computer and it was compromised, the generated paper wallet was accessible at least during the time of your generation.

My recommendation

1. Never ever use a online paperwallet generator

2. Hardware wallets are eventually not super secure, but they offer great security, maybe use them instead of a paperwallet

3. The BIP39 24 word seed can be restored even if the vendor of your HWW disappears

Conclusion:

Use an old offline computer with Bitcoin Core or any other semi-trusted software to generate your private keys or seeds, keep it offline all the time!

Or... use multiple hardware wallets from different vendors in a multisig setup if you want maximal security (but comes with minimal user experience)

share|improve this answer

answered 3 hours ago

Jonas SchnelliJonas Schnelli

5,1851026

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  I said "old" computer because we can assume that older computer have less risks of included hardware based backdoors (like the intel management engine, etc.)
  
  – Jonas Schnelli
  3 hours ago
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Another possible attack vector is the printer, especially if it is a network printer.
  
  – Nate Eldredge
  2 hours ago
  

  
  
  
  

add a comment | 

2

1) If you generate your paper wallet on your computer, you have to fully trust your computer

2) If you use a website for generating your paper wallet, a) you need to trust that website (hopefully its local javascript) b) your browser and its random number generator and c) eventually your network provider(s) (depending on the transport layer security)

3) If you generate your paper wallet on your computer and it was compromised, the generated paper wallet was accessible at least during the time of your generation.

My recommendation

1. Never ever use a online paperwallet generator

2. Hardware wallets are eventually not super secure, but they offer great security, maybe use them instead of a paperwallet

3. The BIP39 24 word seed can be restored even if the vendor of your HWW disappears

Conclusion:

Use an old offline computer with Bitcoin Core or any other semi-trusted software to generate your private keys or seeds, keep it offline all the time!

Or... use multiple hardware wallets from different vendors in a multisig setup if you want maximal security (but comes with minimal user experience)

share|improve this answer

answered 3 hours ago

Jonas SchnelliJonas Schnelli

5,1851026

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  I said "old" computer because we can assume that older computer have less risks of included hardware based backdoors (like the intel management engine, etc.)
  
  – Jonas Schnelli
  3 hours ago
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Another possible attack vector is the printer, especially if it is a network printer.
  
  – Nate Eldredge
  2 hours ago
  

  
  
  
  

add a comment | 

1) If you generate your paper wallet on your computer, you have to fully trust your computer

2) If you use a website for generating your paper wallet, a) you need to trust that website (hopefully its local javascript) b) your browser and its random number generator and c) eventually your network provider(s) (depending on the transport layer security)

3) If you generate your paper wallet on your computer and it was compromised, the generated paper wallet was accessible at least during the time of your generation.

My recommendation

1. Never ever use a online paperwallet generator

2. Hardware wallets are eventually not super secure, but they offer great security, maybe use them instead of a paperwallet

3. The BIP39 24 word seed can be restored even if the vendor of your HWW disappears

Conclusion:

Use an old offline computer with Bitcoin Core or any other semi-trusted software to generate your private keys or seeds, keep it offline all the time!

Or... use multiple hardware wallets from different vendors in a multisig setup if you want maximal security (but comes with minimal user experience)

share|improve this answer

answered 3 hours ago

Jonas SchnelliJonas Schnelli

5,1851026

share|improve this answer

answered 3 hours ago

Jonas SchnelliJonas Schnelli

5,1851026

answered 3 hours ago

Jonas SchnelliJonas Schnelli

5,1851026

answered 3 hours ago

Jonas SchnelliJonas Schnelli

5,1851026