Back to all blogposts
BUILDERZ
2 min read

January 26, 2024

7 ways to prevent wallet draining on Solana

With the increasing adoption of Solana wallets with the forthcoming bull run, the need to safeguard your digital assets from potential threats has never been more critical. This blog aims to be your guide focusing on practical strategies to prevent wallet drainers on Solana.

Stay alert on Discord

Discord communities often have official channels or servers associated with projects, games, or NFT communities. When seeking information or engaging in discussions, use these official channels. Official servers are moderated, and information is more likely to be accurate.

However, admin accounts of Discord channels have been known to be sometimes compromised - while it looks like your favorite server is offering up a whitelist spot leading to a seemingly legit link, they can also be phishing.

Some scammers impersonate administrators, moderators, or well-known figures within a Discord community. They may claim to offer special privileges, assistance, or exclusive information in exchange for personal details or payments.

Scammers can often create fake giveaways or contests to lure users into providing personal information or making small payments for a chance to win. Legitimate projects typically do not require upfront payments for giveaways.

Turning off your DMs on Discord can help users avoid falling victim to phishing links, scam attempts, or unwanted advertisements that may be sent through private messages.

Be wary of job ads

If you’re on Discord daily, you’ve probably been approached by ‘recruiters’ looking to hire ‘moderators’ on their server. It all looks legit, the server has over 20k members and you’re genuinely curious about the role. However, scammers exploit this trend by posing as legitimate employers, offering enticing positions that promise substantial crypto rewards.

Spotting the red flags on Discord isn’t often obvious at first.

Be cautious if:

  • The job offer seems too good to be true, with high payouts for minimal effort.
  • The recruiter insists on fast action or immediate commitments.
  • The employer requests an upfront payment or asks for your private keys or sensitive information.

Never Google Search your wallet or minting site

Google is undoubtedly a powerful search engine, but it doesn't come with a filter for malicious websites. Phishing scams and impersonation attempts are prevalent in the crypto space. Scammers often create fake websites that closely resemble legitimate platforms, aiming to trick users into providing sensitive information or downloading malware. By relying solely on Google search results, users may inadvertently land on fraudulent sites.

SEO manipulation can affect anyone in the space and we've seen a few OGs been caught out.



Search Engine Optimization (SEO) manipulation is a common tactic used by malicious actors to boost the ranking of their websites in search engine results. Hackers and scammers employ various techniques to ensure their fraudulent sites appear at the top of search results (and even pass Google’s ad checks to advertise). Users who blindly click on the first result may connect their wallet unknowingly thinking they are connecting to a legit site and get their wallet drained.

Enable Two-Factor Authentication (2FA)

Two-factor authentication adds an extra layer of security to your accounts. When setting up your wallet, enable 2FA to require a secondary verification step, such as a code sent to your mobile device, whenever you log in or perform sensitive transactions. This additional layer of security helps thwart unauthorized access even if your login credentials are compromised.

Keep Software, browsers, and wallets updated

Regularly updating your wallet software is crucial for staying ahead of potential security vulnerabilities. Developers often release updates to patch vulnerabilities and enhance security measures. Ensure that you are using the latest version of your browser and promptly install any updates. This simple yet effective step can significantly reduce the risk of wallet draining.

Secure your seed phrase

Your seed phrase is the key to accessing your Solana wallet. Treat it like you would treat your physical wallet – private and secure. Avoid storing your seed phrase online, and never share it with anyone - even storing your phrase on programs such as Evernote is a huge risk if these tools are ever compromised. Consider using hardware wallets that store your seed phrase offline, adding an extra layer of protection.

Beware of keyloggers

Keyloggers can record the keystrokes used to enter passwords for cryptocurrency wallets, exchanges, or other related accounts. Once the keylogger captures this information, it can be used by attackers to gain unauthorized access to your accounts. They can capture the entire seed phrase as it's entered, allowing attackers to recreate your wallet and access funds. Seed phrases are particularly sensitive, and their compromise can lead to significant financial losses.

You might unknowingly download keyloggers when they click on malicious links, open infected email attachments, or download compromised software. Once installed on a device, keyloggers silently operate in the background, capturing all keystrokes, including those related to cryptocurrency transactions.

Protecting your Solana wallet from potential draining requires a proactive approach to security. By following these steps, you can significantly reduce the risk of falling victim to malicious activities and enjoy the benefits of participating in the Solana ecosystem with 100% confidence.

Share Blogpost on
Twitter
LinkedIn
WhatsApp
Telegram
Copy Link

More Posts

Want to turn your idea into reality? Let's make it happen.

Let's work together