Phishing Attacks Targeting Crypto Users (and How to Spot Them)
Crypto phishing targets you, not the cryptography. Learn the patterns — wallet drainers, approval phishing, address poisoning — and how SSP helps.
7 min read
Security Best Practices
A practical security playbook for self-custody users — spotting phishing, vetting browser extensions, understanding supply-chain risk, using passphrases, choosing strong 2FA, and running a quarterly opsec checklist.
6 parts
Browser-Extension Hygiene for Crypto Users
Browser extension security for self-custody: vet what you install, apply least privilege, lean on LavaMoat, and let SSP's 2-of-2 backstop a bad extension.
6 min read
Supply-Chain Attacks and Deterministic Builds
What a software supply-chain attack is, why crypto wallets are prime targets, and how deterministic builds and audits let you verify what you run.
7 min read
Passphrase vs No Passphrase: The Trade-off
A BIP-39 passphrase — the optional 25th word — can protect a stolen seed or lock you out for good. What it buys, what it costs, and how it compares to SSP.
7 min read
Mobile 2FA: The Right Way and the Wrong Way
SMS 2FA is weak. Learn why, when TOTP authenticator apps and passkeys beat it, and how SSP Key co-signs every transaction as a second key.
8 min read
Your Crypto OpSec Checklist
Run this 15-minute quarterly OpSec checklist to audit your self-custody: keys, devices, approvals, accounts, phishing, and recovery.
6 min read