LearnCoinsBuzzReviewsSecurityGlossarySearchStart Here →
Intermediate · Learning Resource

How to Recover a Hacked Crypto Wallet (Calm, Step-by-Step)

LC
The Latest Crypto TeamIndependent crypto education · made with love
Updated Apr 202610 min readReferenced & reviewed

Discovering that your crypto wallet has been hacked is frightening, and the instinct is to panic. This guide is the opposite: a calm, ordered checklist of what to do first, what can realistically be recovered, and — just as important — how to avoid the 'recovery' scams that prey on people in exactly this moment.

💡

The 20-second version

Move any remaining funds to a brand-new wallet with a fresh seed phrase immediately. Treat the compromised wallet as permanently burned. Blockchain transactions can't be reversed, and nobody can 'hack the funds back' — anyone promising that is running a second scam.

Advertisement

The first few minutes

Take a breath. Acting carefully now matters far more than acting in a blind rush. The single most useful thing you can do is rescue whatever funds remain before the attacker takes more. If your seed phrase may be compromised, every wallet derived from it is at risk — not just the one that was drained.

  1. Stop interacting with the affected wallet. Don't approve any more transactions or sign any messages.
  2. Create a brand-new wallet on a clean device, with a completely new seed phrase that has never touched the internet.
  3. Move any remaining assets to that new wallet, highest-value first.
  4. Disconnect the compromised wallet from any sites it's connected to, but assume it is no longer safe regardless.
⚠️

Transactions cannot be reversed

Unlike a bank card, blockchain transfers are final. Once funds leave your wallet, no support agent, exchange, or 'recovery expert' can pull them back. Beware anyone who claims otherwise.

Work out how it happened

Understanding the entry point tells you what else is exposed and how to rebuild safely. Most wallet compromises trace back to one of a handful of causes.

  • Seed phrase leaked — typed into a fake site, stored as a photo or note, or entered into a 'wallet validation' pop-up. This is the most serious: the whole wallet is gone.
  • Malicious approval — you signed a transaction on a decentralised exchange or dapp that granted a contract permission to spend your tokens. The wallet itself isn't leaked, but specific tokens can be drained.
  • Fake app or browser extension — a counterfeit MetaMask or wallet clone that captured your keys.
  • Device malware — a compromised computer or phone with a clipboard hijacker or keylogger.

If your seed phrase was never exposed and only certain tokens left, the cause is almost always a malicious token approval rather than a full wallet breach.

Revoke approvals and secure your devices

Token approvals are standing permissions you grant to smart contracts. A common drainer leaves an open approval so it can keep taking tokens whenever your balance refills.

  1. Use a reputable approval-checker tool (such as the official one built into many wallets) to review and revoke any active token approvals on the affected wallet.
  2. Remember that revoking costs a small network fee and only matters for funds still in that wallet — the priority is still moving funds to a fresh wallet.
  3. Run a full malware scan on any device that touched the wallet. If in doubt, treat the device as compromised and reset it.
  4. Change passwords and enable app-based two-factor authentication on your email and exchange accounts, which are frequent secondary targets.

Report it (and set expectations)

Reporting rarely recovers funds, but it's still worth doing — it helps authorities track patterns and may matter for insurance or tax records.

  • Report to your national cybercrime or fraud reporting body (for example, Action Fraud in the UK or the FBI's IC3 in the US).
  • If funds moved to a known exchange, contact that exchange's support with the transaction hashes — they occasionally freeze stolen funds, though there's no guarantee.
  • Keep a written timeline and screenshots. You'll need them for any report and to keep your own thinking clear.

Be honest with yourself about odds

Most stolen crypto is not recovered. Going in with realistic expectations protects you from the recovery scammers who promise the moon — see the next section.

Advertisement

Beware the second scam: fake recovery services

Victims of a hack are immediately targeted by a second wave of fraudsters posing as 'fund recovery agents', 'white-hat hackers', or 'blockchain forensic experts'. They watch public victim posts and slide into your replies or DMs within hours.

  • They guarantee they can 'reverse the transaction' or 'trace and return' your coins — technically impossible.
  • They ask for an upfront fee, a 'gas deposit', or a 'tax' before releasing your funds.
  • They ask for your seed phrase or remote access to your device to 'restore' the wallet.
  • They impersonate the support team of your wallet or exchange.
⚠️

Two rules that never change

No legitimate service will ever ask for your seed phrase, and no one can reverse a confirmed blockchain transaction. Anyone who claims either is a scammer. Learn the full pattern in how to avoid crypto scams.

Rebuild safely

Once the immediate fire is out, set yourself up so this is far less likely to happen again. The biggest single upgrade is moving long-term holdings to cold storage.

A hardware wallet keeps your keys on a dedicated chip that never exposes them to your computer, so even a malware-infected device can't leak them. Generate a fresh seed phrase on the new device and store it offline, on paper — never digitally.

Start fresh with a hardware wallet

If your old setup was a hot wallet, a hardware wallet is the upgrade that prevents a repeat. Buy it directly from the manufacturer — never second-hand — and read our Ledger Nano X review first.

Check price →Affiliate link — we may earn a commission at no cost to you.

Key takeaways

  • Stay calm and rescue remaining funds to a brand-new wallet with a fresh seed phrase.
  • Blockchain transactions are final — no one can reverse them or 'hack the funds back'.
  • Revoke malicious token approvals and treat any affected device as compromised.
  • Recovery services that demand fees or your seed phrase are always a second scam.

Frequently asked questions

Can I get my stolen crypto back?

Usually not. Blockchain transactions are irreversible, and only rarely do funds land on an exchange willing and able to freeze them. Report it, but go in with realistic expectations and ignore anyone promising guaranteed recovery.

Someone messaged me offering to recover my funds — are they real?

Almost certainly not. Recovery scammers specifically target hack victims. No legitimate party can reverse a transaction, and none will ever ask for your seed phrase or an upfront fee. See how to avoid crypto scams.

Is my old wallet safe to use again once I've revoked approvals?

No. If your seed phrase was exposed, the wallet is permanently compromised — abandon it entirely and use a brand-new one. Revoking approvals only helps for malicious-approval cases, and even then a fresh wallet is the safer choice.

LC

The Latest Crypto Team

Independent crypto education · free for all

We built LatestCrypto because we were fed up with the scams, shilling and terrible advice that fill the crypto internet. Everything here is free, honest and made with love — no hype, no “trust me bro”, and we’ll never tell you what to buy. Spotted something we got wrong? Tell us, and we’ll fix it.

Advertisement

Keep reading

Beginner
Scams & Security

How to Avoid Crypto Scams: The Cornerstone Safety Guide

The common crypto scams — fake support, phishing, giveaways, romance and rug pulls — and the simple habits tha

LC The Latest Crypto Team · 5 min
Beginner
Scams & Security

What Is a Seed Phrase? (And Why You Must Never Share It)

A plain-English guide to seed phrases: what they are, how they back up your crypto wallet, how to store one sa

LC The Latest Crypto Team · 5 min
Beginner
Coins & Tokens

Hot vs Cold Wallets: What's the Difference?

A plain-English hot vs cold wallets comparison — how each works, the security trade-offs, and how to combine b

LC The Latest Crypto Team · 9 min