The recent $1.46 billion Bybit hack is a wake-up call to anyone who thinks their assets are safe just because they use a cold wallet. 

What's happened? 

Hackers changed the UI of the Safe multisig wallet. The signers saw the “correct” address and URL, but in reality they signed a change in the logic of the smart contract, giving full control to the attackers. 

Result: 401k ETH flew into the unknown in a couple of minutes.

How to protect yourself?

1. A large screen is a must have: Use a hardware wallet with a normal display (for example, Ledger Stax or Trezor Model 5). The transaction hash must be visible in its entirety. Compare it with what the software shows on your computer, byte by byte. 

2. Check outside the UI: Connect your wallet to a clean machine or use an offline transaction generator (like Electrum in air-gapped mode). No “convenient” interfaces from exchanges or third-party services.