I don't even know Luke, nor have I interacted with him all that much, but right now I feel defeated for him - devastated in fact. Keep your keys and your coins safe, folks.
Discussion
I do as well but honestly he should have known better to backup his life savings on a computer, of all people. I can't imagine putting my family in this position.
Agreed.
The smarter you are the bigger the blind spot, I see it all the time with ppl rolling their own security because they are “qualified”. This means you are a small mistake away from getting pwn. While everyone else using market solutions enjoy the economies of scale and the market beating they take.
You're probably right, he had blinders on for this and couldn't see past his own intellect. Either way, it's super, super sad.
has luke verified this story himself?
Theres no other way for a hacker to steal bitcoin unless it was on a computer somewhere. The only other thing I can think of is some entropy weakness but that seems not as likely
I’m still shocked he wouldn’t be completely batshit paranoid like most of us are to leave that kind of exposure.
We're early enough with Bitcoin that almost everyone will "roll their own" solution at some point. Even the tradeoffs between single sig with shamir vs multisig have no clear winner so it's still very easy to make mistakes.
For most single sig plus passphrase will do, and they can use SeedXOR for backup
singlesig + pw is the ideal for cold storage due to simplicity. I now have a nunchuk + tapsigner setup for my day to day onchain wallet. I think this is the best setup.
That is the way. LN pocket change, BTC spending wallet, and deep cold. A few setups derisk mistakes.
It really comes down to the determination of the thief.
I would suggest it is silly to store a $3m asset in your home office, no matter what methods you use to secure it.
At some threshold you are putting more valuable things at risk (your family), than the Bitcoin.
Love the airgapping too
Keys should never touch a thing that touches the internet.
100 %
Can someone please explain to me the mistake he made? And what are PGP wallets. I don't understand. Thanks in advance.
Stored private keys on a computer
Online computer*
which he used for other internet activities also
this is perplexing tho.
does he not know what cold storage is?
https://twitter.com/lukedashjr/status/1609661811455819776?s=46&t=h0OK6DjyBsFg-vNNWDDILw
I guess, but keeping everything in a hot wallet and/or secured by the same pgp key? I just don't understand a blind spot that big, but also I suppose my intellect isn't that big. Super sad regardless.
Rolling your own is almost always a bad idea.
Unless you’re fiatjaf I suppose 😂
I couldn't imagine putting them in a similar position either. I had open heart surgery and a valve replaced 7 months ago. It was the result of a birth defect. Anyways, I had to review my bitcoin security this past year, making it iron safe, not only for me, but also making sure that it's accessible if the worst would have happened. The whole reason I stack bitcoin is for my wife and kids. That was a hard time, emotionally. And you're right, he should have known better. Blinders I guess?
Did he have them just wide open? He didn’t at least encrypt them in like a 7z file or something?
Pgp encrypted but his pgp keys were stolen
Ahhh
Someone mentioned his Twitter account being hacked and he responded by saying “almost certainly”.
I’m still not really buying it all. Just doesn’t seem like him. The way he’s commenting. The NFT account he tagged along with the FBI. None of it.
Yep seems very fishy and the FBI ?!?
the NFT account w/ the FBI was a bit odd. Dafuq is that NFT account?
He was trying to tag the Internet Crime Complaint Center (IC3) and probably assumed they'd have the handle
Not just that. His coins are quite likely not being put towards nuclear weapons development in North Korea or similar program.
I hate iOS and its god awful autocorrect. I meant **now** being put towards.
it just doesn't even make sense, at all
Pretty sad.
Yeah what a rough deal. Honestly I’ve been heartened by many bitcoin and crypto folks on twitter that, instead of piling on and telling him he fucked up (which he knows he did), are jumping in a lending a helping hand if possible. That’s the type of community we want to foster 🤝
#[1]
Very fishy story imo