Another really cool community initiative from the @loopringorg community💙
If you’re a Loopring Smart Wallet owner, here’s an easy to use Owners Manual
Lööp community once again undefeated🙌💙🤍
➡️ https://t.co/zDsIi30pHs
So, in the case of this OpenSea attack.. even if I clicked a malicious phishing link and the attacker got control of my wallet, there would be no way for them to steal more than $100, unless they somehow knew who my Guardians were and hacked them as well, which is unlikely
6/
To be fair, Social Recovery wallets like ours @loopringorg are still in their early days of development + are more expensive to use than “dumb” wallets
but UI/UX will only improve + costs will come down a lot w/ things like zkEVM💙
Also, what is the price of piece of mind?
7/
“nobody worries about security until it’s too late”
All in all, we as an industry need to recognize that security is paramount if we are going to get wide, mass adoption
Wallets are at the forefront + one of the most critical pieces of this 📲
We can do better🙏
fin/🧵💙
I think calling this @opensea exploit a hack isn’t fair - sounds like it was a social exploit (phishing attack) on users of the app
The real failure here (imo) is that as an industry we still basically require + promote users to use these insecure, “dumb” wallets w/ apps
🧵👇
1/
If you haven’t, please read @VitalikButerin ‘s blog on this subject - “Why we need wide adoption of social recovery wallets”
👉 https://t.co/wV9JncgFYd
In order to reach billions of users, we NEED mass adoption of “Smart” wallets like @loopringorg ‘s💙
2/
The main advantage of a “smart” wallet over a “dumb” wallet (like most wallets ie. MM) is that there is no single point of failure with the Social Recovery mechanism
If you get hacked / phished, you have security layers in place that will prevent the movement of funds
3/
As an example:
With my full Loopring Smart Wallet I can whitelist a bunch of addresses that I trust + control
I can then set daily limits (like $100) so that the max a hacker/phisher could move out of my wallet is $100 to a non-whitelisted address
4/
Also, a hacker couldn’t just easily change this whitelist or daily limits because these changes would require my “Social Recovery” Guardians (external addresses owned by friends or me) to sign off on these changes first 🙏💙
5/