Web3 is full of scams, rugs, hacking attempts, and people looking to take advantage of others for their own personal gain. Here are some simple basic steps to prevent this from happening (or at least make it more difficult).

Basic Computer/Online Security

This section encompasses all the basic online security you need to have when going online.

• Don’t download anything without verifying where it is coming from and if it is from a legit company.

  • Ex: download Adobe directly from Adobe.com (not a ‘cracked’ version), microsoft products directly from Microsoft.com, Open-source software directly from the website (NOT ADS!!!!!!!) and avoid using sites like SourceForge if possible.

  • Download Github files cautiously as numbers can be fake.

  • Don’t download any software anyone sends you on social media, even if it looks legit. AT LEAST search for the software and any reviews, run through VirusTotal or other malware scanning tool.

• Enable and use a virus/malware scanning tool. Usually Windows Defender is enough to use but you can also use Smartscreen for more protection.

  • If you want to use something else, Malwarebytes is a great alternative.

  • Stay away from Avast, McAfee, Norton, AVG, TotalAV. No room to explain why here but it is mostly for personal privacy concerns and personal opinion.

• Get an Ad blocker (or two)

  • Many ads are malicious, especially if it is open-source and/or free software.

  • ‘Alternatives to’ can be similarly malicious.

  • uBlock Origin and AdGuard are good extensions to use.

• Enable 2 factor authentication when possible

  • DON’T use a phone if possible, use an authenticator app

    • Make sure the app password is hard to guess and secure

• Use safe browsing habits, don’t randomly click links, if you never been to a link then make sure to use VirusTotal.com to scan them first.

• Don’t use your browsers password manager.

  • They are rarely encrypted and anyone with access to your computer can view them.

• Make sure to do regular updates to browsers, OS, Antivirus, and any other software you use.

Web3 Specific Security

Along with all the ‘basic’ security, crypto has its’ own unique requirements. Here are some of the basics:

• Never store account/wallet passwords or seed phrases in plain text or in photos on your device (especially hardware wallets).

• Never enter your seed phrase on any website for any reason. You basically only need to enter it in your wallet to restore if you forget your password.

• Never download software from anyone on social media for any reason. Even if it is a legit source. If someone wants you to download ‘meeting’ software, tell them to use Zoom or Google Meet.

  • If you HAVE to download it, at least use a Virtual Machine. Best case, use a device that has nothing on it and is completely clean and not connected to your home/business network.

  • Block anyone trying to get you to download something and move on. You are more than welcome to send me their info and a screenshot if you like (https://x.com/cryptaveli)

• Do crypto on devices you don’t do anything else on IF POSSIBLE. If not possible, be VERY careful about what you download/do on those devices.

  • From what I’ve seen, Apple and Linux devices have less instances of malware vs. Microsoft and Android. However, that doesn’t mean they are completely safe.

• Don’t invest in random coins unless you’re prepared to lose your money

  • Yes, even if an influencer promotes them who usually is ‘right’ or doesn’t promote scams. I’ve seen this happen many many times.

• DON’T invest in celebrity coins, they are 99.9% often rugs within days or weeks.

Conclusion

In the end, while Web3 has a huge upside potential, it is also rife with potential risks, including scams, malware, and hacking attempts.

Implementing strong basic online security practices - such as avoiding unverified downloads, using virus/malware protection, and enabling two-factor authentication - can protect you from many common threats.

For crypto-specific security, safeguarding your seed phrases, being cautious with software downloads, and using dedicated devices for crypto activities can further reduce your risk. Vigilance, combined with the right tools, will make being in Web3 much safer and more secure.

This isn’t an all-inclusive list but it gives a good foundation to start or continue your blockchain journey. What would you add to this list?