Security 101
Last updated
Last updated
Use a tool like to simulate transactions before you execute them. This will not always protect you, but can help you avoid common scams such as immediate wallet drainers.
Do not talk to anyone using your real identity about your crypto or NFT related activities. If criminals know you have any crypto related assets they may go after you and your family if they figure out you are an easy target.
If you have a reputation as someone into crypto, plan your downfall now. You lost your phone in a boating accident and didn't backup your recovery phrase. You lost everything on a meme coin. Your wallet got drained and you are out forever. Or simply delete everything previously and STFU starting now.
You should never store your seed phrase anywhere digitally. This includes online password tools (multiple data breaches have happened), password protected digital archives (data leaks happen and passwords often get cracked), taking a picture with your phone (your phone may be uploading every picture you take to the cloud and someone may recover your photos in the future if you lose your device). All of these are mistakes others have made before and it is what enabled thieves to steal their assets.
You should store your seed phrase physically in multiple secure locations only you know about. Make it a fun treasure hunt for your next of kin. Don't make it easy for thieves.
The device used for crypto-related activities should adhere to strict security practices:
Use a clean OS install for crypto only
Do not install any unnecessary software
Never download random files - PDFs/videos can contain malware
Avoid browser extensions unless essential
No casual web browsing or social media
Do not use for email
Essentially, the crypto device should serve a singular purpose to minimize attack surface. Avoiding downloads and installs is key, as files introduce significant risk even if they appear harmless. Keeping your primary crypto device pristine closed off from everyday digital activities will help protect your assets.
Many scams try to trick users into draining their wallets. If something seems too good to be true, verify legitimacy with trusted experts first.
Top threats:
Sites that falsely claim wallet connectivity to enable theft of listed NFTs. This is how 0 ETH sales occur. Never connect to random sites, especially from unknown contacts.
Links in DMs/pings to fake mint pages that drain wallets. Expect 99% of sudden "deals" to be fraudulent.
Airdropped NFTs with embedded links making bold claims. Do not interact with unfamiliar tokens.
Random offline trade offers for your NFTs. Demand marketplace trades only.
See a more comprehensive scam list here:
Minting directly on Artblast removes many attack vectors. Our standardized contracts cannot run external code.
Stay vigilant even if experienced. Avoid crypto activities when compromised by exhaustion, sickness, intoxication — lowered inhibitions increase scam risk. Scams sometimes succeed through persistence, not sophistication.
You can use to create a vault which requires multiple signatures to allow transactions to go through. This is useful for storing assets more securely as even if a single device gets owned, you can replace that device/wallet with a fresh one and nothing is lost. A common pattern is to use 2-3 devices for signing using multiple wallets, and then also storing some backup wallets that are also on the multisig.