Ian Grabill

So yesterday there were 2(?) exploits of Ethereum contracts that resulted in millions of dollars worth of NFTs being stolen out of people's wallets. The victims had at some point given approval to these contracts and two hackers found an exploit which allowed them to transfer the NFTs to themselves. As a result of that, this thread is being promoted. It's an end user strategy to basically setup 3 different wallets to limit your vulnerability. You can read it below, but it limits connecting your wallet holding all your valuables to something that could be exploited. It makes sense in the current environment, but it also really pisses me off. Let me explain why. I've been a fan of crypto since BTC back in 2013, the tech is awesome, but unfortunately the UX sucks and stuff like this just perpetuates it. The real problem is that writing exploit free smart contracts is too difficult and instead of addressing that, we are putting that responsibility on the end user. There is 0% chance that ETH can succeed if new users need to setup 3 wallets when they sign up. Imagine joining a bank and when you open your account they tell you to keep your cash under your mattress cause they can't guarantee someone won't steal it. Eth needs end user security baked in and it needs to be easy, not playing musical wallets so I don't lose my ass. Now this isn't the first time an exploit has occurred and it won't be the last, but I do believe ETH is running out of time to solve this problem. It's clear that contract auditing is not enough, maybe AI can help. I'm still a big believer in ETH and do think innovation will prevail, but we need to stop putting the responsibility of security on the end user and put it back on the chain, developers and ecosystem.