giving best practice advice vs following own advice is a human trait.

also best practice advice is sometimes too impractical.
it all depends on how much wealth you have at risk then decides how much effort you want to take to protect it

someone with just a month wage stored. may just have a seed wrote down they import into a wallet to spend and have the change go to a completely new seed based address. so that the seeds are secure each time

where as someone with more wealth might have multiple devices that separately sign and only present the signatures to each other via a air gapped method (convert to QR code and snap a picture and send it to the main system to append signatures)

some may want more then a paper wallet and have a hardware device that can enter seeds without touching a computer

there are many many many ways to back up seeds, keys, wallets. the world is your oyster, but it all depends on your personal risk/preference.

its like fiat world
only a months salary.. normal ATM visa debit card.. 'tap and pay risk' of losing maybe $100 per payment via card cloners, where when spotting it you move funds to new account

$mansion money$  set up a family trust requiring co-signer trustee's to sign off on funds to beneficiaries

some have both set up.. a multisig 'trust' for main hoard of coin. with a lite wallet seed of weekly/monthly spend amount

it was 600 thousand usd not 600 million usd, i made a mistake (and deleted my message but you quoted it before that lol), but yeah non KYC exchanges do seem to abound.

Given the Bisq low volume, it would take you a long time to cash out 200 bitcoin that way. But I agree, cashing out 200 bitcoin at this day and age is not that hard if you know where to look, and people that managed to hack him are surely not some noobs.


Oh damn, I had no idea that it used to be like that in the early days. Just a thought of typing my seed into some web browser app or whatever it was makes me very uncomfortable. I got my Ledger Nano S back in the late 2017 (after I lost almost everything I had) and wouldn't go back on any other type of cold storage.


My guess is yes, because if he was hacked before, he would be way more careful than he was. Btw not saying that he was careless, but he would probably be extra careful it it has already happened in the past.

It does happen commonly but not to a huge name like this. Not because he is famous, even famous people could get hacked, but because he is famous for being a bitcoin developer. Dude knows how to be safe, and yet he was still hacked and he doesn't even know how he was hacked neither.

I believe that the best thing to do would be letting him handle whatever he wants to handle to get the answers, give him full access to everything and find the issue. Because, if there is a hole somewhere that hackers could use to hack him, they could 100% hack all of us, if he couldn't protect himself, there is absolutely no way that we could ever protect ourselves better than he did.

Like what? Not Binance, is that what you're talking about?

i too think the luke stash splits that end up on bc1q addresses(precise amounts of 1-5btc) will end up on those types of CEX and converted to some other currency
converting it to true fiat via those sites wont be non-kyc because doing fiat withdrawals reveals bank account holder name. so those sites will be just conversion bridges to altcoins/stable coins and them moved again before the entity doing it thinks its safe to then "cash out" or hoard back as BTC again elsewhere

I have just only one question.
Why didn’t he cash the UTXO sending them pro the exchange? No one would have never known that, as those funds were not tied to him.
Now he has to be extremely careful handling those utxo's.

it actually does not matter if its seed or legacy or multisig or segwit

if you expose any seed, wallet file, private key to a system that is hackable(online) where you probably downloaded a compromised file that contains a trojan. those coins no matter the format of the private key, becomes their

whomever the entity is (luke/hacker) they are not stupid to just throw coins into an exchange to cash out, straight from the "event". as the lack of taint jumps are to close to the publicly known address, which has been called out as stolen funds

their game is to taint jump and tx format change to hope they can skip passed the limits and tolerances of coin analysis where the fresh addresses of small amount wont raise any red flags when eventually entering an exchange/service

im surprised that these coins have not moved on much. i would have expected those precise(no decimal) coins on bc1q addresses to have been 'spent' through a mixer by now. several times. or looped through a non kyc exchange to swap for altcoin/stablecoin.

edit

i just checked address in tx above. and it has now split the 1btc into smaller amounts of 0.002
as have some other bc1q adddreses(taint back to 1yar) of precise amounts now split into 0.001 amounts
https://www.blockchain.com/explorer/addresses/BTC/bc1qr3vpj9ffshqp53u9la0g6nwhx6f5n3z9l7xhwd
this to me shows signs of splits of "mixer token" allotments (al)ready to be mixed
https://www.blockchain.com/explorer/addresses/btc/bc1qm2qljj3a64ueqfq885ne2yy9pddnez7vz4y2v5

i would say beyond this point it is now hard to tell if these funds when spent are the entity(luke/hacker) or some idiot that is in receipt from some mixed funds.

but knowing (due to FATF regs) that regulated exchanges do not tolerate funds that went through a mixer, it should be fun to see what exchanges accept or reject deposits from those spends, even if the user is not entity(hacker/luke)

as for the funds the entity does get (different mixer deposit stash) they too may have issues trying to deposit into exchanges unless another taint jump ordeal is done to outpace chain analysis tolerances

And my question is, have they not heard the alarm bells from people (Twitter?) warning them that they are currently holding Luke-jr's stolen funds?

OKX has got to freeze all those funds. Never mind, they apparently haven't even been sent to an exchange yet.