🔐 A Hard Lesson on Account Security - And Gratitude to Those Who Helped Me Recover.
- Introduction
Over the past few days, I've experienced one of the most stressful events on Steemit when my account was compromised.
I noticed unauthorised transfers from my wallet, and shortly after, my owner keys were changed, locking me out of an account I’ve spent years building. Anyone who has been in this situation knows how frustrating and helpless it can feel, especially when your reputation and history are tied to that account.
source
Thankfully, this story has a good ending.
With the help of @rme, @steemchiller, and other community members, especially the PussFi in whole who stepped in at critical moments, I was able to recover my account successfully. Their patience, guidance, and calm support made all the difference during this tense time. I’m genuinely grateful for the work they do behind the scenes to keep this community running and to help users when things go wrong.
🧠 What I Learned (and what I want others to learn)
This experience taught me some hard but important lessons about account security:
Never underestimate old compromises, even if a device was cleaned months ago, leaked keys or cached access can still be exploited later by unauthorised users.
source
Be extremely careful where you store your keys!
Avoid cloud services such as, email, screenshots, or shared devices. Owner keys, especially, should be stored offline.
Understand the role of your recovery account
One of the issues that delayed me was the recovery account, which made the recovery last about 2 weeks before I could get it back. You should know that your recovery account is your last line of defence.
Make sure it’s set to an active and reliable account (such as @steemit or @retrieve) so recovery doesn’t become unnecessarily difficult, as I heard those are faster and more active helplines.
Don’t panic, ask for help the right way, and don't share your keys with untrusted users in the process. Use trusted communities(PussFI and the ABB community are always active), use official channels, and verified witnesses. Never send your keys to random people claiming to help.
This incident purely reminded me that Steemit is more than just a blockchain; it’s a community. When things went wrong, people showed up, not because they had to, but because they cared about your integrity and reputation on the platform.
source
To @rme, @steemchiller, @adeljose and everyone who assisted me along the way: thank you. Your support helped me regain not just my account, but my peace of mind.
I hope this post helps someone avoid the same mistake or act faster if they ever face a similar situation. Stay safe, protect your keys, and don’t take account security lightly.
Note:-
This isn't the community to share this content, but I validated it because it's informative.
Regards, @adeljose
https://x.com/_bhardmorse/status/2007138938662834487?s=20
https://x.com/_bhardmorse/status/2007139430751187129?s=20
https://x.com/_bhardmorse/status/2007139683621573003?s=20