Share this page!

Bharat Krymo Profile picture
Twitter logo
Jul 24 13 tweets 3 min read
1/ "What doesn't kill you makes you stronger!" -Kelly Clarkson. Ok it wasn't Kelly, but Nietzsche. This is the story of multi-tasking stupidity leading to a hack. Lesson here...be vigilante in all things crypto related.
2/ I was in the middle of some in IRL work stuff when a twitter message from a fren popped up about Oddity nesting. On the surface it made sense, so I followed the message to what I thought was @JustinMezzell's account tweet...it was very similar with 20K+ followers.
3/ This is where I failed "social engineering 101". I usually check the authenticity of the account and then go to the official website, but I didn't and that was mistake #1. Went to my non-social media system with my hot wallet and went to odditiesburrow (the spurious site).
4/ Here I committed cardinal sin #2, I connected my wallet and not only approved a transaction...I approved several of them. Till my brain finally clicked in and said 'idiot' WTF are you doing? Something is off here.
5/ By then I was watching in amazement as one by one items were being transferred out of my hot wallet. I quickly disconnected odditiesburrow from MM. Went to revoke.cash and kinda froze. My mind was wondering between transferring assets out and revoking perms.
6/ This is when I pinged my friend and one of the smartest technologists in web3 @0xfoobar to seek his advice. When the shit's hitting the fan...your brain kinda does the 'squirrel', so he was a calming influence giving me some checks to do and suggestions.
7/ First transferred out some of the higher value stuff to my vault and then followed foobar's advice to revoke all perms for the hacker wallet. I should've and could've been faster at this than I was, but I chalk it down to kinda like an accident unfolding in real time.
8/ You gawk in amazement. The hacker was doing this one transaction at at time...if they had scripted it, I could've had the entire wallet wiped.
9/ The hacker ended up with 12 oddities (some grails), 22 rune warriors, 35 rekt guys (couple of grails), 2 chimpers, a Gmoney admit one pass, a goblin (mcdonalds take your order special) and my pride.
10/ The hackers got a lot of stuff, but they didn't get my dickbutts. Shows you hackers don't get culture. They'll always be on the outside looking in.
11/ I'm fortunate that I have a multi-wallet setup with a vault & hot wallet for NFTs. If this was my vault wallet, could've been a disaster. This clearly outlines the need for a tertiary wallet for minting etc. Also, don't be lazy your hot wallet bloats in time...hygiene!!!
12/ Hope this helps some of ya'll avoid this. It could've been orders of magnitude worse. I got lucky, but need to be extra vigilant. Never forget that self custody means you need to build your own Fort Knox. Don't be lazy, triple check and avoid multi-tasking.
13/ Really and truly appreciate the outpouring of support from my metaverse fam. All the stuff I have is replaceable, but the relationships forged are not! 🙏🫂💕

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Bharat Krymo

Bharat Krymo Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @krybharat

Bharat Krymo Profile picture
May 24
1/ On cc0, the future of web3 and public goods. I've long felt that cc0 was the right web3 aligned licensing model, but as a solution it seemed a few years out due to the shortcomings of an ultra democratic model. The events of the past few weeks have changed my perspective. 🧵
2/ If we go back to the mid 90s Microsoft was the monopolistic leader in the operating system (OS) space...what we could call the infrastructure stack. They did that with a largely proprietary model in cahoots with Intel (Wintel) on a tech stack that forced alignment for anyone
3/ building on that stack, whether a software provider or other. This created a completely closed operating environment and ecosystem of partners...a keiretsu of sorts. Which in classic business sense lines the pockets of a few through draconian licensing practices.
Read 15 tweets
Bharat Krymo Profile picture
May 17
1/ In lieu of the major crypto market correction, I've been getting pings on what to do. I updated a post from last year. Here's what a potential investable crypto pyramid could look like. Not financial advice, but my own 'ruminations'.
2/ Start with a strong base layer that consists of 25% stables (USDC, USDT, DAI etc) with 75% split between BTC and ETH. This is where I would keep a majority of the do not touch portfolio. I $ cost average into BTC and ETH regularly. The stables are for black swan events.
3/ Now I start a layer with stables that are used to generate income into stable farms such as @CurveFinance or @iearnfinance or @AlchemixFi
Lots of terrific multi-layered yield strategies, but ensure whatever you use is audited, time tested and yes even been hacked once or twice
Read 10 tweets
Bharat Krymo Profile picture
Nov 27, 2021
1/ Web 3.0's impact on society (current & future):
*traditional monoliths refactored into composable primitives
*global cultural transformation (memetic & metaversial)
*shift from employee to entrepreneurial
*power of several industrial revolutions
2/ When the network becomes as fast as the backplane of a computer, the computer hollows out and spreads across the network (see: Gilder's Law) from a place of lower (trapped value) to higher (centralized cloud) and
3/ eventually to the best fit (decentralized networks). This higher value tier underpinned Web 2.0 where data trapped in siloed systems 'flowed' to the cloud leading to a data or exaflood often constrained or acted upon by corporation(s) for value extraction. Now as we look to
Read 15 tweets
Bharat Krymo Profile picture
Nov 11, 2021
1/ "bandwidth grows at least three times faster than computer power." -Gilder's law : this underpinned Web 2.0 where the data trapped in siloed systems 'flowed' to the cloud leading to a data or exaflood often constrained or acted upon by corporation(s) for value extraction.
2/ In decentralized, open Web 3.0 systems the data is everywhere, unconstrained in an openly actionable and transparent ledger. This unlocks unbridled innovation as individuals have a level playing field from which to build, integrate or compose a super set of primitives.
3/ This clearly matches the vision Vitalik had when he tabbed Ethereum the "World Computer". However, it has become oh so much more. It's become the beating heart operating system, middleware and database of disruption for traditional finance, art and culture.
Read 7 tweets
Bharat Krymo Profile picture
Nov 10, 2021
1/ Welcome to the 6 month 10x effect. NFTs unlike any other asset class have accelerated at a rate and pace faster than anything seen before (including DeFi). If you're doing portfolio construction today it'll cost you 10x what it cost just 6 months ago for a like portfolio.
2/ My expectation is that we will see a similar trend 6-12 months from now. The power law effects and lack of transparent order books will only serve to quicken the rate and pace of growth. Acting on floors will become a relic of the past as the space matures.
3/ Rental platforms supporting NFTs should allow for the development of liquidity pools that benefit both buyers and sellers alike. Currently liquidity is hard to find outside of larger collectible or generative drops. Good luck finding liquidity on that grail 1:1.
Read 8 tweets
Bharat Krymo Profile picture
Sep 5, 2021
1/ For new collectors in this space just some perspective from an old dog. Do not get caught up in the FOMO when you see folks flipping for big profit or making big investments. Know if you’re a HODLer or flipper as time preference matters.
2/ Having a plan and sticking to it is vital. Investable money is usually a finite resource, so copy trading is ok if early but will get you destroyed if late. Buy what you love if you’re a HODLer as you never have to worry about price fluctuation and history is a good guide.
3/ In 2019 I was winning auctions and picking up grail pieces at 1 ETH or below with little in the way of competition. I’m talking @XCOPYART, @Hackatao and @Coldie who I affectionately refer to as the OG 1:1 triumvirate.
Read 11 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

:(