Back to Blog
SECURITY

.cardvault Security Best Practices

11 min read
Cyber Security

Your .cardvault domain is a valuable digital asset. Unlike traditional domains, if your wallet is compromised, your domain can be stolen permanently. Follow these practices to keep it safe.

1 Use a Hardware Wallet

Software wallets (MetaMask, Trust Wallet) are convenient but vulnerable. Hardware wallets store your private keys offline, making them nearly impossible to hack. This is especially critical if you're running a DeFi project with high-value domains.

Recommended Hardware Wallets

  • Ledger Nano X/S Plus: Industry standard, supports ETH/SOL
  • Trezor Model T: Open-source, highly secure
  • GridPlus Lattice1: Advanced security features

Never Do This

  • • Store private keys in cloud storage
  • • Share seed phrases via email/text
  • • Use public WiFi for wallet transactions

2 Protect Your Seed Phrase

Your seed phrase is EVERYTHING

Anyone with your 12-24 word seed phrase has complete control of your wallet and ALL assets—including your .cardvault domains. Before transferring your domain, ensure your destination wallet is secure.

DO: Write it on paper and store in a fireproof safe
DO: Use a metal backup (Cryptosteel, Billfodl)
DO: Consider splitting backup between 2 secure locations
DON'T: Take a photo of it (hackers can access your photos)
DON'T: Store it digitally (cloud, email, password managers)
DON'T: Tell anyone—not even family (unless they inherit)

3 Beware of Phishing Attacks

Phishing is the #1 way people lose blockchain assets. Scammers impersonate legitimate sites to steal your credentials.

🚨 Common Phishing Tactics

  • Fake websites: "freenamc.com" instead of "freename.com" (note the typo)
  • Email scams: "Verify your wallet or lose your domain!"
  • Discord DMs: "You won a free domain, click here to claim"
  • Fake support: "Customer service" asking for your seed phrase

✅ How to Stay Safe

  • Always type URLs manually (bookmark freename.com)
  • Check for HTTPS and the lock icon
  • NEVER enter seed phrases on ANY website
  • Legitimate support will NEVER ask for private keys

Security Checklist

✅ Using hardware wallet for high-value assets
✅ Seed phrase stored offline in fireproof safe
✅ 2FA enabled on all accounts
✅ Antivirus software updated
✅ Only using official Freename.com website
✅ Never shared seed phrase with anyone

Pro tip: If you're building a DeFi brand, consider using a multi-sig wallet for team domains to prevent single points of failure.

Security First, Always

Your .cardvault domain is only as secure as your wallet. Follow these practices religiously.

Secure Your Domain Now →