Replying to nobody

Early this morning I woke up and noticed on my watch only wallet in BlueWallet and Sparrow desktop that someone has initiated an unauthorized transfer of all of my UTXO's to a BTC address that is not mine. It has not confirmed yet. It is showing as a low priority transaction that is set to clear in about 3 hours.I am unable to enter a higher priority transaction to drain my wallet before this unauthorized transaction does. Because Sparrow says I have an insufficient balance.

Doesn't this unauthorized transaction always need my signing device in order to finalize the transaction?

Any ideas what I should do? Thanks
dc
nobody 1y ago

OK so final rundown. Cold Card is the shit. No signing device and I’ve been air gapped since day 1, so despite the unauthorized TX showing “signed”, it would not progress to completion. Did a Replace With Fee to override the unauthorized TX and send sats to a temp address. Renewed my HW wallet seed to re-establish it is good. Looks like I am in the clear. Unless there is something fundamentally wrong with Cold Card’s security model, or with Sparrow desktop.

Cost: my seed plates and $50 in TX fees.

Fuck you hacker.

Reply to this note

Please Login to reply.

Discussion

Avatar
Johan Liebert 1y ago

Hi MJ, I am Johan Liebert a kid's rights student. About your issue, did you have a passphrase that was never in any decive conected with the network ?

dc
nobody 1y ago

Never

Avatar
Johan Liebert 1y ago

I was expecting some "nice to meet you Johan" but we can skip it I guess. So Mj lets see... was you passphrase very simple or was it complex ? If it was very simple someone could hack; if it was medium simple someone that knows you very well could guess; and finally, if it was complex you are lying about something previous.