⚡️💬 NEW - "I just had over $3,000,000 worth of XRP stolen from my cold wallet."
Brandon, 54, has just lost $3 million worth of XRP that was stored in his Ellipal cold wallet.
"I thought I was being careful," he says in a YouTube video.
This represents nearly eight years of savings for him.
https://blossom.primal.net/521e01f37f6633ac5d14f0756a7815acb27f52b877229f06427c73e2804d3761.mov
French subtitles #nostrfr
https://blossom.primal.net/bd226bf2c9b10f395fef4922b8820cb7b7f26658e1e7994402fbcdb49a703818.mp4
Shitcoin wallets…
No way..
People can randomly guess keys and get lucky.
Doubtful.
I doubt that was the case for this one especially seeing how this one was a hefty bag.
Definitely. Those where hot keys and he f’d up
I looked up Ellipal, apparently the software and firmware are all proprietary and closed source. If they placed a backdoor, they very well could have been the thieves.
Also looking at that screenshot he had all 1+ million of his XRP in either one account or one UXTO. I'm not sure if XRP uses an account model or uxto model, but either way, KYC or not that's a huge target on the public blockchain for everyone to see. Any hacker would target those addresses first. If he were to have his XRP mixed correctly it would be likely that he wouldn't have been targeted. Goes to show how imperative privacy is especially for public surveillance coins.
Other than those two observations I'm curious to how else this could have happened. I hope he shares details about how he backed up his seed phrase and other details so the larger community can learn from this. To me Ellipal's proprietary software is a huge red flag.
Can you explain how you believe this theft took place? He imported his seed phrase into the Ellipal app on his own device, (not a website) and that would be enough to expose it to a hacker? I feel like I’m missing some information.
Hot wallets are vulnerable inherently.
As soon as that seed phase touches a device that can access the internet there’s a greater than zero percent chance you can loose your stack.
I understand that, I’m just wondering what happened after it was imported, like maybe he pasted it somewhere else that was accessible to a hacker.
⚡️ UPDATE ⤵︎
Thanks for the update! 🫡
nostr:nprofile1qqspnzgrfett3asxcuj0gksje6z2zxzpvgd27uvz58m9vsuqh8zzw6cpzamhxue69uhhyetvv9uhxtnyd9nkwmm09e3k7mgpzemhxue69uhkyet5vyhxummnw3exjmpwvdsk62gz0qf Could something like this happen when using nostr:nprofile1qqsvxq03xdev3uxehjqcdkr5lfzl5vawmcf7vm6ps73m6ghwg8y4k2spzemhxue69uhkummnw3ezuumvda6xs7fwwa5kuqgjwaehxw309ac82unsd3jhqct89ejhxxne7qx ?
There should be no reason to ever upload your seed phrase into nunchuk. That would make it not a cold storage wallet. Your seed phrase is used in the hardware wallets that are used to be able to sign transactions out of nunchuk
Ah oui d’accord bon là ok bien sur évidemment ha ha mdr
« Accidentally »
If he's a shit coiner how can we even trust him?
Are we sure he even knows the difference between cold and hot wallets?
Like how does someone steal from your cold wallet without physically accessing it?
XRP army is the most retarded of all shitcoiners.
Imagine how bad he's going to feel when XRP hits $1000 per coin though
as I understand it, it is better to save your cryptocurrencies in a wallet that is not connected to the internet all the time and even less leave them saved on exchanges, because at any time they can close and those who closed it can keep everything without giving any explanation.
RIP
