@johnarb Can you vet this claim of loss?
I don't know the guy, but I agree with him that Metamask does not have 2fa and is always logged on, which you can manually log out of
There's an option for a hardware wallet like Ledger Metamask integration but I do not use one so I don't have an opinion on it
I have 6 figures $ of cryptos on Metamask, but I spread it on many Metamask wallets and each wallet can have many accounts
At one time, I had over $700K worth of BNB which was stored on 2 Metamask wallets. Metamask can connecgt to Binance Smart Chain, Avalanche chain, Fantom chain, and other chains
I've never been hacked. Knock on wood
I have accounts and passwords that have been hacked on servers out there, but that's the same with any servers that store my accounts for example, I got letters from Macy's and Target saying they were hacked and my personal info, blah blah blah, also credit cards, I think PayPal sent me a new card a couple of years ago as they were hacked, whatever, I don't worry about those things, lol
I don't do Windows. Not on any banking stuff, nor cryptos. I don't even do MacOS or IOS, don't care for that Apple walled garden
He talks about his desktop at home and Mac? laptop. My guess is he has malware at his Windows desktop. He also uses his phone. He has too many attack surfaces, tbh. He may have malware on his phone, too
Connecting to WiFi does not automatically mean you get hacked. Sure there are packet sniffers and possible man-in-the-middle attack vectors, but that's why every site you go to should be already bookmarked and not typed or googled. If you get a warning from the browser that the site is not trusted, close everything, man-in-the-middle is feeding you a fake certificate
Also use a VPN when connecting to untrusted WiFi and it better not be a free VPN
But I agree, he should have been using the hotspot on his cell phone
I don't know what happened to him, I wish him the best, hope he recovers from it. I would recommend Chrome laptop or Chrome desktop for him in the future
