Hi!
- Rule 3: You should use offline hardware wallet for long-term holding. You also consider use a separate ubuntu computer only for transaction.
Here's a guide about
MyEtherWallet Offline Transactions (
https://bitcointalk.org/index.php?topic=4500372.0) - may also work for many other coins (Google).
I'd still prefer a hardware-wallet but signing transactions offline is a very secure alternative (if you're doing it right).
- Rule 4: Double check all websites related to crypto. You will avoid the fake website by this way. I suguest you bookmark all trusted websites and also use Metamask extention for avoiding fake MEW.
Unfortunately bookmarking a website won't protect you against DNS-hijacking-attacks. I'd always use a hardware-wallet/offline-transactions so it wouldn't be possible to grab your private-key.
- Rule 5: Dont download any high risk file to your computer and also use antivirus sorfware.
Not downloading high risk files is one of the most important aspects - and if you really have to download something you don't know if it's safe, just use a sandbox/VM.
However AV-software is a pretty controversial topic as it gives you a wrong feeling of security and may even provide vulnerabilities for malware.
Best regards,
Nestade
Hi Nestade, as i clearly say, some rules above i have learned from the others and internet. I see this is the basis rules but helpful for newbie, so i collect and share for everyone. I hope people pay attention to the smallest things to avoid scam. Thank for your contribution.