What did I do wrong that caused me to lose bitcoin?












1















I've been accumulating bitcoin into a paper wallet for a couple weeks. It's all been stolen. I'm trying to figure out what I did wrong:
https://www.blockchain.com/btc/address/193jdrxMKoUjWLyKm2UCGNXLGGvK1x3FDV



I've been very careful with this wallet. I purchased bitcoin on Bisq. Over time I was sending them to a paper wallet that I generated on bitcoinpaperwallet .com. I printed this paper wallet on a piece of paper hidden inside my house. I never saved the private key anywhere on my computer.



As I transferred funds into the wallet, I would verify they arrived by checking blockchain .com. They always did.



A week ago I transferred a lot more bitcoin to this same paper wallet. Today I checked and the wallet was completely drained, hours after the last transfer and soon after I verified they arrived (using blockchain .com). The bitcoins seem to have been instantly transferred to a bunch of wallets downstream and scrambled.



I'm completely baffled as to what I've done wrong. I searched my computer to make sure I didn't accidentally save the private key somewhere, it's nowhere to be found. But I knew that I didn't do this. I was very careful when generating the paper wallet. The only place the private key is on this piece of paper.



No one in my house knows anything about bitcoin, and anyway, this paper has been kept concealed.



What did I do wrong? Any clues?



P.S. Since I know someone will ask, the reason I didn't use a hardware wallet is that I was going to save this paper wallet on multiple encrypted USB sticks. I don't trust the hardware wallets to be secure and recoverable ~10 years from now when those companies may be gone and their software may be outdated.






paper-wallet wallet-security







share|improve this question







New contributor




sucks1717171 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.





















  • Can you elaborate on how you generated the paper wallet? Did you do so in a web browser? Did you save the .html file and then run it while offline? Did the computer that generated the keys ever go online again later? What sort of printer did you use, is it connected to your network? Your answers to these questions may provide clues. Sorry you were robbed :(

    – chytrik
    2 hours ago
















1















I've been accumulating bitcoin into a paper wallet for a couple weeks. It's all been stolen. I'm trying to figure out what I did wrong:
https://www.blockchain.com/btc/address/193jdrxMKoUjWLyKm2UCGNXLGGvK1x3FDV



I've been very careful with this wallet. I purchased bitcoin on Bisq. Over time I was sending them to a paper wallet that I generated on bitcoinpaperwallet .com. I printed this paper wallet on a piece of paper hidden inside my house. I never saved the private key anywhere on my computer.



As I transferred funds into the wallet, I would verify they arrived by checking blockchain .com. They always did.



A week ago I transferred a lot more bitcoin to this same paper wallet. Today I checked and the wallet was completely drained, hours after the last transfer and soon after I verified they arrived (using blockchain .com). The bitcoins seem to have been instantly transferred to a bunch of wallets downstream and scrambled.



I'm completely baffled as to what I've done wrong. I searched my computer to make sure I didn't accidentally save the private key somewhere, it's nowhere to be found. But I knew that I didn't do this. I was very careful when generating the paper wallet. The only place the private key is on this piece of paper.



No one in my house knows anything about bitcoin, and anyway, this paper has been kept concealed.



What did I do wrong? Any clues?



P.S. Since I know someone will ask, the reason I didn't use a hardware wallet is that I was going to save this paper wallet on multiple encrypted USB sticks. I don't trust the hardware wallets to be secure and recoverable ~10 years from now when those companies may be gone and their software may be outdated.






paper-wallet wallet-security







share|improve this question







New contributor




sucks1717171 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.





















  • Can you elaborate on how you generated the paper wallet? Did you do so in a web browser? Did you save the .html file and then run it while offline? Did the computer that generated the keys ever go online again later? What sort of printer did you use, is it connected to your network? Your answers to these questions may provide clues. Sorry you were robbed :(

    – chytrik
    2 hours ago














1












1








1








I've been accumulating bitcoin into a paper wallet for a couple weeks. It's all been stolen. I'm trying to figure out what I did wrong:
https://www.blockchain.com/btc/address/193jdrxMKoUjWLyKm2UCGNXLGGvK1x3FDV



I've been very careful with this wallet. I purchased bitcoin on Bisq. Over time I was sending them to a paper wallet that I generated on bitcoinpaperwallet .com. I printed this paper wallet on a piece of paper hidden inside my house. I never saved the private key anywhere on my computer.



As I transferred funds into the wallet, I would verify they arrived by checking blockchain .com. They always did.



A week ago I transferred a lot more bitcoin to this same paper wallet. Today I checked and the wallet was completely drained, hours after the last transfer and soon after I verified they arrived (using blockchain .com). The bitcoins seem to have been instantly transferred to a bunch of wallets downstream and scrambled.



I'm completely baffled as to what I've done wrong. I searched my computer to make sure I didn't accidentally save the private key somewhere, it's nowhere to be found. But I knew that I didn't do this. I was very careful when generating the paper wallet. The only place the private key is on this piece of paper.



No one in my house knows anything about bitcoin, and anyway, this paper has been kept concealed.



What did I do wrong? Any clues?



P.S. Since I know someone will ask, the reason I didn't use a hardware wallet is that I was going to save this paper wallet on multiple encrypted USB sticks. I don't trust the hardware wallets to be secure and recoverable ~10 years from now when those companies may be gone and their software may be outdated.






paper-wallet wallet-security







share|improve this question







New contributor




sucks1717171 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.












I've been accumulating bitcoin into a paper wallet for a couple weeks. It's all been stolen. I'm trying to figure out what I did wrong:
https://www.blockchain.com/btc/address/193jdrxMKoUjWLyKm2UCGNXLGGvK1x3FDV



I've been very careful with this wallet. I purchased bitcoin on Bisq. Over time I was sending them to a paper wallet that I generated on bitcoinpaperwallet .com. I printed this paper wallet on a piece of paper hidden inside my house. I never saved the private key anywhere on my computer.



As I transferred funds into the wallet, I would verify they arrived by checking blockchain .com. They always did.



A week ago I transferred a lot more bitcoin to this same paper wallet. Today I checked and the wallet was completely drained, hours after the last transfer and soon after I verified they arrived (using blockchain .com). The bitcoins seem to have been instantly transferred to a bunch of wallets downstream and scrambled.



I'm completely baffled as to what I've done wrong. I searched my computer to make sure I didn't accidentally save the private key somewhere, it's nowhere to be found. But I knew that I didn't do this. I was very careful when generating the paper wallet. The only place the private key is on this piece of paper.



No one in my house knows anything about bitcoin, and anyway, this paper has been kept concealed.



What did I do wrong? Any clues?



P.S. Since I know someone will ask, the reason I didn't use a hardware wallet is that I was going to save this paper wallet on multiple encrypted USB sticks. I don't trust the hardware wallets to be secure and recoverable ~10 years from now when those companies may be gone and their software may be outdated.






paper-wallet wallet-security




paper-wallet wallet-security






share|improve this question







New contributor




sucks1717171 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.











share|improve this question







New contributor




sucks1717171 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.









share|improve this question




share|improve this question






New contributor




sucks1717171 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.









asked 6 hours ago









sucks1717171sucks1717171

62




62




New contributor




sucks1717171 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.





New contributor





sucks1717171 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.






sucks1717171 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.













  • Can you elaborate on how you generated the paper wallet? Did you do so in a web browser? Did you save the .html file and then run it while offline? Did the computer that generated the keys ever go online again later? What sort of printer did you use, is it connected to your network? Your answers to these questions may provide clues. Sorry you were robbed :(

    – chytrik
    2 hours ago



















  • Can you elaborate on how you generated the paper wallet? Did you do so in a web browser? Did you save the .html file and then run it while offline? Did the computer that generated the keys ever go online again later? What sort of printer did you use, is it connected to your network? Your answers to these questions may provide clues. Sorry you were robbed :(

    – chytrik
    2 hours ago

















Can you elaborate on how you generated the paper wallet? Did you do so in a web browser? Did you save the .html file and then run it while offline? Did the computer that generated the keys ever go online again later? What sort of printer did you use, is it connected to your network? Your answers to these questions may provide clues. Sorry you were robbed :(

– chytrik
2 hours ago





Can you elaborate on how you generated the paper wallet? Did you do so in a web browser? Did you save the .html file and then run it while offline? Did the computer that generated the keys ever go online again later? What sort of printer did you use, is it connected to your network? Your answers to these questions may provide clues. Sorry you were robbed :(

– chytrik
2 hours ago










1 Answer
1






active

oldest

votes


















2














1) If you generate your paper wallet on your computer, you have to fully trust your computer



2) If you use a website for generating your paper wallet, a) you need to trust that website (hopefully its local javascript) b) your browser and its random number generator and c) eventually your network provider(s) (depending on the transport layer security)



3) If you generate your paper wallet on your computer and it was compromised, the generated paper wallet was accessible at least during the time of your generation.



My recommendation



1. Never ever use a online paperwallet generator



2. Hardware wallets are eventually not super secure, but they offer great security, maybe use them instead of a paperwallet



3. The BIP39 24 word seed can be restored even if the vendor of your HWW disappears



Conclusion:



Use an old offline computer with Bitcoin Core or any other semi-trusted software to generate your private keys or seeds, keep it offline all the time!



Or... use multiple hardware wallets from different vendors in a multisig setup if you want maximal security (but comes with minimal user experience)






share|improve this answer
























  • I said "old" computer because we can assume that older computer have less risks of included hardware based backdoors (like the intel management engine, etc.)

    – Jonas Schnelli
    4 hours ago











  • Another possible attack vector is the printer, especially if it is a network printer.

    – Nate Eldredge
    3 hours ago











Your Answer








StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "308"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});

function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: false,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
noCode: true, onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});


}
});






sucks1717171 is a new contributor. Be nice, and check out our Code of Conduct.










draft saved

draft discarded


















StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fbitcoin.stackexchange.com%2fquestions%2f85038%2fwhat-did-i-do-wrong-that-caused-me-to-lose-bitcoin%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown

























1 Answer
1






active

oldest

votes








1 Answer
1






active

oldest

votes









active

oldest

votes






active

oldest

votes









2














1) If you generate your paper wallet on your computer, you have to fully trust your computer



2) If you use a website for generating your paper wallet, a) you need to trust that website (hopefully its local javascript) b) your browser and its random number generator and c) eventually your network provider(s) (depending on the transport layer security)



3) If you generate your paper wallet on your computer and it was compromised, the generated paper wallet was accessible at least during the time of your generation.



My recommendation



1. Never ever use a online paperwallet generator



2. Hardware wallets are eventually not super secure, but they offer great security, maybe use them instead of a paperwallet



3. The BIP39 24 word seed can be restored even if the vendor of your HWW disappears



Conclusion:



Use an old offline computer with Bitcoin Core or any other semi-trusted software to generate your private keys or seeds, keep it offline all the time!



Or... use multiple hardware wallets from different vendors in a multisig setup if you want maximal security (but comes with minimal user experience)






share|improve this answer
























  • I said "old" computer because we can assume that older computer have less risks of included hardware based backdoors (like the intel management engine, etc.)

    – Jonas Schnelli
    4 hours ago











  • Another possible attack vector is the printer, especially if it is a network printer.

    – Nate Eldredge
    3 hours ago
















2














1) If you generate your paper wallet on your computer, you have to fully trust your computer



2) If you use a website for generating your paper wallet, a) you need to trust that website (hopefully its local javascript) b) your browser and its random number generator and c) eventually your network provider(s) (depending on the transport layer security)



3) If you generate your paper wallet on your computer and it was compromised, the generated paper wallet was accessible at least during the time of your generation.



My recommendation



1. Never ever use a online paperwallet generator



2. Hardware wallets are eventually not super secure, but they offer great security, maybe use them instead of a paperwallet



3. The BIP39 24 word seed can be restored even if the vendor of your HWW disappears



Conclusion:



Use an old offline computer with Bitcoin Core or any other semi-trusted software to generate your private keys or seeds, keep it offline all the time!



Or... use multiple hardware wallets from different vendors in a multisig setup if you want maximal security (but comes with minimal user experience)






share|improve this answer
























  • I said "old" computer because we can assume that older computer have less risks of included hardware based backdoors (like the intel management engine, etc.)

    – Jonas Schnelli
    4 hours ago











  • Another possible attack vector is the printer, especially if it is a network printer.

    – Nate Eldredge
    3 hours ago














2












2








2







1) If you generate your paper wallet on your computer, you have to fully trust your computer



2) If you use a website for generating your paper wallet, a) you need to trust that website (hopefully its local javascript) b) your browser and its random number generator and c) eventually your network provider(s) (depending on the transport layer security)



3) If you generate your paper wallet on your computer and it was compromised, the generated paper wallet was accessible at least during the time of your generation.



My recommendation



1. Never ever use a online paperwallet generator



2. Hardware wallets are eventually not super secure, but they offer great security, maybe use them instead of a paperwallet



3. The BIP39 24 word seed can be restored even if the vendor of your HWW disappears



Conclusion:



Use an old offline computer with Bitcoin Core or any other semi-trusted software to generate your private keys or seeds, keep it offline all the time!



Or... use multiple hardware wallets from different vendors in a multisig setup if you want maximal security (but comes with minimal user experience)






share|improve this answer













1) If you generate your paper wallet on your computer, you have to fully trust your computer



2) If you use a website for generating your paper wallet, a) you need to trust that website (hopefully its local javascript) b) your browser and its random number generator and c) eventually your network provider(s) (depending on the transport layer security)



3) If you generate your paper wallet on your computer and it was compromised, the generated paper wallet was accessible at least during the time of your generation.



My recommendation



1. Never ever use a online paperwallet generator



2. Hardware wallets are eventually not super secure, but they offer great security, maybe use them instead of a paperwallet



3. The BIP39 24 word seed can be restored even if the vendor of your HWW disappears



Conclusion:



Use an old offline computer with Bitcoin Core or any other semi-trusted software to generate your private keys or seeds, keep it offline all the time!



Or... use multiple hardware wallets from different vendors in a multisig setup if you want maximal security (but comes with minimal user experience)







share|improve this answer












share|improve this answer



share|improve this answer










answered 4 hours ago









Jonas SchnelliJonas Schnelli

5,1851026




5,1851026













  • I said "old" computer because we can assume that older computer have less risks of included hardware based backdoors (like the intel management engine, etc.)

    – Jonas Schnelli
    4 hours ago











  • Another possible attack vector is the printer, especially if it is a network printer.

    – Nate Eldredge
    3 hours ago



















  • I said "old" computer because we can assume that older computer have less risks of included hardware based backdoors (like the intel management engine, etc.)

    – Jonas Schnelli
    4 hours ago











  • Another possible attack vector is the printer, especially if it is a network printer.

    – Nate Eldredge
    3 hours ago

















I said "old" computer because we can assume that older computer have less risks of included hardware based backdoors (like the intel management engine, etc.)

– Jonas Schnelli
4 hours ago





I said "old" computer because we can assume that older computer have less risks of included hardware based backdoors (like the intel management engine, etc.)

– Jonas Schnelli
4 hours ago













Another possible attack vector is the printer, especially if it is a network printer.

– Nate Eldredge
3 hours ago





Another possible attack vector is the printer, especially if it is a network printer.

– Nate Eldredge
3 hours ago










sucks1717171 is a new contributor. Be nice, and check out our Code of Conduct.










draft saved

draft discarded


















sucks1717171 is a new contributor. Be nice, and check out our Code of Conduct.













sucks1717171 is a new contributor. Be nice, and check out our Code of Conduct.












sucks1717171 is a new contributor. Be nice, and check out our Code of Conduct.
















Thanks for contributing an answer to Bitcoin Stack Exchange!


  • Please be sure to answer the question. Provide details and share your research!

But avoid



  • Asking for help, clarification, or responding to other answers.

  • Making statements based on opinion; back them up with references or personal experience.


To learn more, see our tips on writing great answers.




draft saved


draft discarded














StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fbitcoin.stackexchange.com%2fquestions%2f85038%2fwhat-did-i-do-wrong-that-caused-me-to-lose-bitcoin%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown





















































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown

































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown







-

Popular posts from this blog

Loup dans la culture

Image
Loups sur une enluminure du Bestiaire d'Aberdeen Le loup est l'animal le plus emblématique de l'histoire de l'Eurasie, il était à l'honneur durant l'Antiquité chez la totalité des anciens peuples européens [ 1 ] . Sommaire 1 Le loup dans la mythologie 2 Les loups dans le folklore 2.1 L'évolution des mentalités 2.2 Le loup dans la psychanalyse 3 Le loup dans les œuvres culturelles 3.1 Le loup dans la littérature 3.1.1 Fables 3.1.2 Poésie 3.1.3 Romans 3.1.4 Littérature jeunesse 3.1.4.1 Quelques titres d'albums contemporains 3.1.5 Bande dessinée 3.2 Le loup à l'écran 3.2.1 Le cinéma et la télévision 3.2.2 Documentaires 3.2.3 Dessins animés 3.2.4 Jeux vidéo 3.3 Le loup en peinture et en sculpture 3.4 Le loup dans les œuvres musicales 4 Le loup et les noms propres 5 Bibliographie 6 Notes et références 7 Voir aussi 7.1 Articles connexes
Read more

How to solve the problem of ntp “Unable to contact time server” from KDE?

Image
1 0 I want to set date and time automatically but this error appears when I try to .. I'm using openSUSE, I tried different servers but it didn't work either, help please! It doesn't seem to be a network problem: $ ping pool.ntp.org 64 bytes from 41.78.128.17: icmp_seq=1 ttl=41 time=260 ms To the question of whether ntpd is installed and running: $ ps -C ntpd PID TTY TIME CMD i.e. there's no ntpd process running. $ rpm -qa | grep ntp yast2-ntp-client-3.1.12-1.7.noarch ntp-4.2.6p5-25.2.1.i586 Further information from the comments: $ sudo ntpdate pool.ntp.org 25 Sep 19:41:51 ntpdate[3162]: no server suitable for synchronization found networking kde opensuse ntp ntpd sh
Read more

ASUS Zenbook UX433/UX333 — Configure Touchpad-embedded numpad on Linux

Image
0 1 I have an ASUS Zenbook UX433,on which ASUS decided to innovate by embedding a Numpad inside the touchpad (see picture 1). Toggling between classic touchpad mode and numpad (also turns the touchpad LEDs on) can be done through the golden button in the top-right corner of the touchpad. However, on my Manjaro arch Linux config, this behavior does not work by default and I can only use the touchpad, no numpad. Has anyone been able to configure the numpad to work on Linux, or have any idea how this could be achieved? EDIT1: I have had a look at the official Windows drivers for the UX433FA TouchPad, but was not able to make anything of it. I tried installing them on Linux using tools like NDISWrapper, but they do not detect the TouchPad/Numpad hardware, and my understanding of drivers is too limited.
Read more