Most losses I've seen from Sparrow group are people entering their seed into a scam website, after messaging for support and getting an impersonator DM'ing them.
Also had some users rolling their own entropy incorrectly. Then an automated process eventually sweeps the funds from the low entropy seed.
That's pretty scary.
just wondering if examples exist where users have had their phones remotely hacked and keys stolen,
using it as a dedicated device *without their engagement.
that is to say
if remote exploits are an actual risk for the average hodler
or its in the realm of "theoretically possible but not ever gonna happen unless maybe if you're a known target"
Probably happened to enemies of the state being targeted with something like Pegasus, but I'd say any such theft would have been a tertiary goal of such an attack. Most such attacks are primarily done for intelligence gathering and stealing from the target would alert them.
