- Original Poster
- #1
I run infrastructure/security work (hosting, incident clean-ups, access control) and I keep seeing the same thing with ******: most losses aren’t “someone hacked the blockchain”, they’re phishing, SIM swaps, fake support, compromised email, or a rushed mistake.
If you’re UK-based and holding anything meaningful, a few practical controls make a huge difference:
Curious what others here do in practice (and what you’ve seen go wrong). Any good UK-specific resources you recommend?
If you’re UK-based and holding anything meaningful, a few practical controls make a huge difference:
- Email security: unique password + MFA, and treat email as the master key
- Number security: lock down your mobile account, consider a separate number for finance
- Device hygiene: updates, no sketchy browser extensions, separate “finance” browser profile
- Second-channel verification: if “support” contacts you, assume it’s a scam until proved otherwise
- Backups: secure, tested, and not all in one place
- Household plan: if you’re ill or die, does anyone know what exists (without giving them access)?
Curious what others here do in practice (and what you’ve seen go wrong). Any good UK-specific resources you recommend?
