Lesson 6 of 10

Buying, Storing, and Securing Bitcoin

The why behind buying, holding, and securing bitcoin, grounded in the real-world failures that wrote the rules. The hands-on walkthrough comes in Lesson 10.

Theory's Over. Time to Bring It to the Real World.

Imagine This

You set up a wallet on your phone. You buy $50 of bitcoin from an exchange. You copy a long string of letters and numbers (your wallet's receive address) and paste it into the exchange's withdrawal screen. A few minutes later, the bitcoin lands. You stare at the balance for a second and realize what just happened. There is no bank between you and that money. No CEO who can freeze it. No support line that can lock you out. The keys live on your phone, and only on your phone. You are, for the first time, your own bank. And being your own bank means you carry the risks a bank used to carry on your behalf.

The first five lessons were the case for why Bitcoin matters: what money is, what Bitcoin is, where it came from, how the machinery works, how it compares to the system you grew up inside. This lesson is where you stop reading about it and start holding it. Buying bitcoin is the easy part. Keeping it is where almost everyone who has ever lost bitcoin went wrong.

In 2013, a British IT worker named James Howells tossed an old hard drive during a routine cleanup at home. On it were the private keys to 8,000 bitcoin he'd mined back in 2009, when almost nobody was mining. At today's prices those coins are worth over $600 million; at the October 2025 peak they briefly topped $1 billion¹. The drive is almost certainly still sitting in a Welsh landfill outside Newport, buried under more than a decade of trash. In January 2025, after years of legal fighting, the UK High Court ruled Howells had no reasonable prospect of recovering it and closed the matter for good. One person. One mistake. Half a billion dollars in a garbage dump.

Every rule in this lesson was written in someone else's losses, Howells' and thousands of others. The goal is to make sure none of those stories become yours.

One more thing to set up before we start. The whole reason we hold our own keys is that the neutrality Bitcoin offers (money that no third party can freeze, debase, or override) only reaches the user if the user actually takes custody of what the protocol grants them. Self-custody is not an ideology in this lesson. It is the operational consequence of everything the first five lessons taught.

¹ Wikipedia, Bitcoin buried in Newport landfill, wikipedia.org; UK High Court ruling coverage: Tom's Hardware, Jan 2025, tomshardware.com. Valuation estimated at 8,000 BTC × current price; October 2025 ATH ~$126K.

How to Actually Get Bitcoin

Imagine This

It's your first time buying bitcoin. You open your phone and search "buy bitcoin." You're immediately flooded with options: exchanges, apps, ATMs, peer-to-peer platforms, cashback services. Some charge 1% fees. Some charge 15%. Some hold your bitcoin for you. Some give you the keys immediately. Some push hundreds of other cryptocurrencies alongside Bitcoin. How do you know which one to trust? And more importantly, how do you avoid the traps that have already cost other people everything?

Three paths lead a new holder from dollars to bitcoin. Each involves a different trade-off between convenience, privacy, and cost.

Method	How It Works	Pros	Cons
Regulated Exchange	Sign up, verify identity, link a bank, buy. Strike, River, Swan, Coinbase.	Lowest fees. Automated recurring buys. Beginner-friendly.	Requires government ID. Exchange holds your bitcoin until you withdraw.
Peer-to-Peer	Buy directly from another person via Bisq, RoboSats, or Peach Bitcoin.	More private. Little or no identity verification.	Steeper learning curve. Slower. More friction.
Bitcoin ATM	Insert cash, scan a wallet QR code, receive bitcoin.	Fast. Cash-friendly. No bank needed.	Expensive: average buy fees 10–15%; round-trip costs can hit 17%.

For most people starting out, a regulated exchange is the right choice. The trade is identity verification: exchanges are required by law to collect a government ID, proof of address, and sometimes a live selfie. In return you get transparent pricing, automated recurring buys, and a working customer support line. Strike, River, and Swan are popular with Bitcoiners because they are Bitcoin-only: they don't push altcoins, leverage, or yield products. Try to stay away from exchanges that offer everything under the sun like Coinbase and Binance; their exchanges actively point users toward other coins, which is a distraction at best and a trap at worst.

Bitcoin ATMs are worth understanding, because they are everywhere. About 28,000 of them operate across the United States, and roughly 16,000 are run by just three companies: Bitcoin Depot, CoinFlip, and Athena Bitcoin¹. Average buy fees run 10–15%, with Bitcoin Depot and similar operators commonly charging 12–20% on the sell side². A round trip (cash in, bitcoin out, bitcoin sold back for cash) can cost 17% before Bitcoin's price moves at all. The premium buys you privacy (often) and speed (always). For any amount beyond pocket money, it is almost never the right trade.

The Single Best Strategy: Dollar-Cost Averaging

Instead of trying to buy at the "right" time (something even professional traders cannot do consistently), set up automatic recurring purchases. Same amount, same day, every week or every month. It smooths Bitcoin's volatility, removes emotion entirely, and has outperformed almost every attempt to time the market across Bitcoin's history.

A Real Story

In November 2021, Bitcoin hit $69,000 for the first time. Media coverage was everywhere. Millions of new buyers rushed in at the top, convinced the price would only keep climbing. Within twelve months, it had dropped to around $16,000, a 77% crash. Many of those buyers panicked and sold at a loss. Meanwhile, someone who had been dollar-cost averaging, buying $100 every Friday from January 2021 through December 2024, regardless of price, accumulated roughly 1.0 to 1.2 BTC at an average cost in the low $40,000s³. When Bitcoin crossed $100,000 in late 2024, their steady discipline dramatically outperformed almost everyone who tried to time the market. DCA isn't exciting. It's just effective.

Key Point

The exchange is an on-ramp, not a destination. Buy there, then move your bitcoin to your own wallet. This is the single most important habit in this lesson. Every story in the next section happens to people who forgot this rule.

¹ Coinatmradar, US crypto ATM operator market share and unit counts, coinatmradar.com. ² Bitget Academy, Feb 2026 Bitcoin ATM fee analysis, bitget.com; fee ranges corroborated by HollaEx, hollaex.com. ³ DCA outcome modeled via dcabtc.com ($100/week, Jan 2021–Dec 2024 window). November 2021 ATH and subsequent drawdown: CoinMarketCap historical data.

The Exchange Is an On-Ramp, Not a Vault

"What is needed is an electronic payment system based on cryptographic proof instead of trust, allowing any two willing parties to transact directly with each other without the need for a trusted third party."

Satoshi Nakamoto, e-cash paper announcement, October 31, 2008

The entire Bitcoin whitepaper turns on that one sentence. Proof instead of trust. Direct transactions instead of intermediaries. Every story in this section is what happens when a holder gives the proof back to someone else and returns to the trust-based system Bitcoin was designed to replace.

Imagine This

It's November 2022. You've been buying bitcoin on FTX, one of the largest and most "reputable" cryptocurrency exchanges in the world. Celebrity endorsements. Super Bowl ads. A $32 billion valuation. Your congressman has met with the CEO. Then, in the span of 72 hours, it all unravels. FTX can't process withdrawals. Your bitcoin, along with billions in customer funds, is gone. The CEO is arrested for fraud. He'd been gambling with customer deposits for years. The money you thought was safely stored was never really there. You can't get it back. There is no FDIC insurance. There is no bailout. Not your keys, not your coins.

FTX was not the first exchange collapse, and it will not be the last. Every major exchange failure in Bitcoin's history teaches the same structural lesson. The names and dollar amounts change, the mechanism doesn't. When you deposit bitcoin on an exchange, you hand the exchange your keys. From that moment, you are not a bitcoin owner. You are a creditor. Whether you get your coins back depends on the exchange's solvency, its honesty, and its operational security, none of which you control.

BTC stolen, Mt. Gox 2014

Billion+ shortfall, FTX 2022

Billion in one day, Bybit 2025

Million downstream, Coinbase 2025

A Brief History of Exchange Failures

Custodian Failure	Year	What Happened	Status (2026)
Mt. Gox	2014	World's largest exchange at the time. Hacked over several years; ~850,000 BTC stolen (~$460M at the time).	Creditors still being repaid eleven years later. Trustee extended the deadline to October 2026, the third postponement.¹
QuadrigaCX	2019	Founder Gerald Cotten "died" in India holding the only keys to ~$190M CAD in customer funds. An Ontario Securities Commission investigation later concluded he had been running a Ponzi scheme for years.	Funds never recovered.²
Celsius	2022	"Crypto bank" promising yield on deposits froze all withdrawals overnight, then filed Chapter 11.	$4.7B frozen; creditor recovery partial.
FTX	2022	CEO Sam Bankman-Fried used customer deposits to fund a sister hedge fund. Collapsed in 72 hours. $8B+ shortfall. Largest fraud in crypto history.	Paying creditors in November 2022 dollars, not bitcoin. ~$10B distributed through 2025; fourth $2.2B round scheduled March 31, 2026.³
BlockFi	2022	Lending platform with deep ties to FTX. Collapsed in the fallout. $1B+ customer funds locked.	Partial recovery via bankruptcy proceedings.
Coinbase Insider Breach	May 2025	Overseas support contractors were bribed to leak account data (names, addresses, KYC ID photos) on ~69,000 customers. Attackers demanded $20M ransom; Coinbase refused. Leaked data fueled ~$400M in follow-on social-engineering losses and directly enabled physical targeting of holders whose home addresses were now in criminal hands.	Even the most regulated US exchange could not protect its customers' identities from an insider.⁴
Bybit	Feb 2025	Largest single crypto exchange theft in history. Attackers compromised the signer UI during a routine multisig transaction and walked away with ~$1.4B. Attributed by Chainalysis to North Korea-linked groups.	Drove total 2025 crypto theft to $2.02B, up 51% year over year.⁵

The FTX line in that table deserves a second look. The creditors who lost bitcoin in November 2022 are being repaid in the dollar amount their bitcoin was worth on the day FTX collapsed. Bitcoin traded around $16,000 that day. By late 2024 it had crossed $100,000; in October 2025 it topped $126,000. A customer who lost one bitcoin on FTX is receiving roughly $16,000 back, for an asset that would have been worth six to eight times that if it had been sitting in their own wallet. "You'll get your money back eventually" is the best-case scenario of centralized custody, and even the best case cost those holders most of a bull market. In a crisis, IOUs get renegotiated. Keys do not.⁶

A Real Story: QuadrigaCX

In December 2018, Gerald Cotten, the 30-year-old CEO of Canada's largest crypto exchange, reportedly died while traveling in India. He was supposedly the only person holding the private keys to $190 million CAD in customer funds. The money vanished. The Ontario Securities Commission later concluded Cotten had been running a Ponzi scheme for years before his death, using customer deposits to fund his lifestyle and cover earlier shortfalls. Conspiracy theories still swirl about whether he is actually dead. Regardless, the $190 million has never been recovered. The lesson is brutal and simple: if someone else holds the keys, someone else controls the money, and "someone else" might be a fraud, a thief, or a dead man.

"But What About an ETF?"

The ETF Trade-Off

Spot Bitcoin ETFs like BlackRock's IBIT let you buy a share that represents bitcoin held by a custodian. It is not bitcoin; it is a securities claim on bitcoin. The line of people between you and your coins is longer (issuer, custodian, brokerage), and roughly 85% of all ETF-held bitcoin is custodied at a single company, Coinbase⁷. That does not make ETFs bad. For money inside a 401(k) or IRA that cannot legally hold bitcoin directly, an ETF is a reasonable on-ramp. For everything else, understand you have moved the counterparty risk, not removed it.

Exchange Rule #1

Only hold bitcoin on an exchange long enough to buy it. The moment your order settles, withdraw to your own wallet as soon as possible. Every story above happened to people who intended to move their bitcoin "later." Later never came.

¹ CoinDesk, Oct 2025: Mt. Gox creditor repayment extended to Oct 2026, coindesk.com. ² Ontario Securities Commission, QuadrigaCX: A Review by Staff of the Ontario Securities Commission (June 2020). ³ FTX Recovery Trust distribution schedule, CoinDesk, Sept 2025, coindesk.com; March 2026 fourth-round, cryptocurrencyhelp.com. ⁴ BleepingComputer, May 2025, bleepingcomputer.com. ⁵ Chainalysis, 2025 Mid-Year Crypto Crime Update, chainalysis.com. ⁶ James Lavish, The Informationist newsletter (2023–2024). Paraphrase: "If you don't hold the keys, you hold an IOU. In a crisis, IOUs are renegotiated. Keys are not." ⁷ ETF custody concentration: Unchained, Is Holding Your Own Keys Worth It?, unchained.com.

Your Keys, Your Coins

If you can't leave bitcoin on an exchange, where do you keep it? The short answer: in your own wallet, using your own keys. The longer answer fills the rest of this lesson. Before we get into the mechanics of a wallet, here is the full picture of where bitcoin can live, and who, in each configuration, is actually in control of it.

The Custody Spectrum

Not all custody is equal. The table below ranks the major configurations from most counterparty risk to least. "Better" always means "fewer people between you and your bitcoin."

Configuration	Who Holds the Keys	Trust Required	Primary Risk
Exchange	The exchange	Full trust in a private company	Insolvency, fraud, hack, seizure, withdrawal freeze
ETF / Custodial Security	ETF custodian (85% Coinbase)	Full trust in issuer + custodian + brokerage	Counterparty chain, concentration, paid in dollars not bitcoin
Hot Wallet (Software)	You, on a phone or computer	Trust in your device's security	Malware, phishing, lost or stolen device
Hardware Wallet (Cold)	You, offline device	Minimal: keys never touch the internet	Physical loss (mitigated by seed-phrase backup)
Multisig	You, across multiple devices (e.g. 2-of-3)	Minimal: no single key moves funds alone	Complexity; requires planning

The top two rows return you to the trust-based system Bitcoin was designed to escape. The bottom three rows keep you inside the proof-based system the protocol actually offers. The rest of this lesson is about moving you from the top of that table to the bottom.

What a Wallet Actually Is

A Bitcoin wallet does not hold coins. It holds keys, the cryptographic secrets that let you sign transactions spending specific bitcoin on the network. The coins themselves live in the public ledger every node on the network keeps. Your wallet's job is to prove, on command, that you are the one allowed to move them. Whoever controls the keys controls the bitcoin. Full stop.

That single fact is what makes "Not your keys, not your coins" more than a slogan. It is an operational description of how the system works. If your keys are on an exchange, the exchange moves the coins. If your keys are on a hardware wallet sitting in your dresser, only you move the coins. The bitcoin itself doesn't care who owns it; it honors whoever produces the valid signature.

"Sovereign money requires sovereign custody. The moment your keys are in someone else's hands, you are back inside the trust-based system Bitcoin was designed to replace."

Saifedean Ammous, paraphrased, The Bitcoin Standard, Ch. 8 "Digital Money"¹

Hot vs. Cold

Self-custody wallets come in two flavors. Hot wallets run as software on a phone or computer, always connected to the internet, fast to use, and vulnerable to whatever your device is vulnerable to. Examples: Blue Wallet, Muun, Phoenix, Sparrow. Good for small amounts and daily spending, the equivalent of the cash in your physical wallet.

Cold wallets, also called hardware wallets, are small dedicated devices that hold the keys offline. When you want to send bitcoin, the transaction is built on your phone or laptop, passed to the device, signed inside the device, and passed back. The private key itself never touches the internet-connected machine. Every piece of malware in the world, every phishing site, every compromised browser extension needs your key to steal your bitcoin. A hardware wallet is how you make that key unreachable.

The Practical Default

Most holders end up running both. The hot wallet handles the small amounts you actually move; the hardware wallet holds the bitcoin you rarely touch. Choosing the hot wallet is a five-minute install (Section 6 walks through it). Choosing the hardware wallet is the rest of this section.

Choosing a Hardware Wallet: The Bitcoin-Only Shortlist

This course recommends Bitcoin-only hardware wallets over multi-coin devices. Two reasons. First, a Bitcoin-only device has a smaller attack surface: less firmware, fewer features, fewer ways to go wrong. Second, Bitcoin-only vendors align with the course's ethos: you are learning to secure a single monetary asset, not to manage a portfolio of speculative tokens.

Device	Price	Who It's For
Coldcard Mk4 / Q	~$150–$220	The most battle-tested Bitcoin-only device. No USB ever; signing happens via SD card or QR. Slightly steeper learning curve than the others, but the longest track record and the top pick for users who want maximum auditability.
Foundation Passport Core	~$199–$299	Premium consumer hardware with a camera-based QR-signing workflow. Polished UX, two generations available. Coldcard-level security in a friendlier package.
Blockstream Jade / Jade Plus	~$69–$170	The budget pick. Camera-based QR signing or USB. Open-source. Best price-to-quality in the category, and the cheapest way to own a credible Bitcoin-only device.
BitBox02 (Bitcoin-only edition)	~$129	USB-based, Swiss-made, open-source. A Bitcoin-only firmware variant of a serious device, with a clean setup flow for first-time buyers.
Trezor Safe 3 / Safe 5 (Bitcoin-only edition)	~$79–$179	The credible Bitcoin-only firmware from the multi-coin vendor. The Safe series fixes the historical security concerns of the older Model T and Model One.

A Note on Ledger

Ledger is one of the most widely sold hardware wallets in the world, and it will secure bitcoin if used correctly. This course does not recommend it for new buyers for three reasons.

First, Ledger is a multi-coin device; its firmware and software stacks are larger than a Bitcoin-only course needs.

Second, in 2020 Ledger's e-commerce database was breached, exposing names, physical addresses, and phone numbers of roughly 270,000 buyers. That data has been linked to real-world wrench attacks in 2024 and 2025².

Third, Ledger launched "Ledger Recover" in 2023, an optional cloud-shard seed-backup service that many Bitcoiners regard as a breach of the self-custody principle. If you already own a Ledger, keep using it; it works. If you're buying new for this course, prefer the shortlist above.

Key Point

Moving from exchange custody to self-custody is the single most important step you will take as a bitcoin holder. The mechanics come in the next two sections: how to back up your keys, and how to recognize the attacks that want to pry them loose. But the decision is made here: you are moving the bitcoin from keys a company controls to a device/keys you control. Everything that follows is about keeping them there.

¹ Saifedean Ammous, The Bitcoin Standard, Ch. 8 "Digital Money" (Wiley, 2018). ² Ledger 2020 e-commerce database breach and its 2024–2025 link to physical wrench attacks: Decrypt, Grisliest Wrench Attacks 2025, decrypt.co.

The Twelve Words That Are Your Bitcoin

Imagine This

Your house catches fire. Your phone, your laptop, and your hardware wallet are all destroyed. Every device you own is gone. But in a fireproof safe at your brother's house, there's a small steel plate with twelve words engraved on it. You buy a new hardware wallet the next week, type the twelve words into it, and every satoshi you ever held is sitting right there, exactly as it was. No insurance claim. No bank recovery process. No customer support line. The seed phrase is the wallet. Every device is just a window into it.

When you create a self-custody wallet, hot or cold, the wallet generates a seed phrase: 12 or 24 English words in a specific order, drawn from a standardized dictionary of 2,048 words¹. That sequence is a mathematical encoding of your private keys. It can restore your entire wallet (all bitcoin balances, all addresses, all transaction history) onto any compatible device, anywhere in the world, by anyone who types it in the right order.

Read that last sentence again. Anyone who types it. That is both the seed phrase's greatest feature and its greatest danger. A seed phrase is not a password attached to an account somewhere. It is the keys themselves, rendered in a form a human can write down. Whoever has the words is the wallet owner, from the network's point of view. No authentication check, no "I'll just call the bank," no fraud-reversal department. Which means your job as a self-custody holder reduces to one sentence: keep the seed phrase safe, and keep it private.

What a Seed Phrase Looks Like

1. abandon

2. ability

3. about

4. above

5. absent

6. absorb

7. ??????

8. ??????

9. ??????

10. ??????

11. ??????

12. ??????

A real seed phrase is randomly generated from a 2,048-word dictionary. The masked words are intentional; this is not a real phrase.

The Rules: No Exceptions

DO	DON'T
Write it down on paper, by hand, the first time the device shows it to you.	Type it on any computer or phone keyboard.
Store the paper in a fireproof safe or another secure location.	Photograph it, screenshot it, or scan it.
For larger amounts, engrave the words onto steel or titanium plates.	Email it, message it, or upload it anywhere.
Tell one trusted family member where the backup is kept, not the words themselves.	Store it in a notes app, cloud drive, or password manager.
Keep a second backup in a separate physical location you trust.	Say it aloud in public, on a call, or near a microphone.

Two kinds of failure destroy more bitcoin than every exchange collapse combined. The first is losing the seed: forgetting where the paper went, throwing out the wrong drawer, having the house burn without a second backup. The second is exposing the seed: typing it into what looked like a recovery tool, taking a photograph "just in case," storing it in a file that syncs to the cloud. Both outcomes are permanent. Neither has customer support.

Two Real Stories: What Happens Without a Seed Phrase Backup

James Howells. We met him at the start of this lesson. Here's the full picture. In 2013, during a routine cleanup at home in Newport, Wales, Howells threw out an old laptop hard drive that held the private keys to 8,000 bitcoin he had mined in 2009, back when he was one of a handful of people mining on an ordinary laptop. For more than a decade he fought to excavate the Newport council landfill where the drive was almost certainly buried. In January 2025, the UK High Court dismissed his case for good, citing the six-year limitation under English civil procedure and section 14(6)(c) of the Control of Pollution Act, which, the court found, had transferred ownership of the drive to the council the moment it was deposited. The bitcoin is still in the landfill. It is worth over $600 million at today's prices and briefly topped $1 billion at the October 2025 peak². Howells will never touch it.

Stefan Thomas. A San Francisco programmer who, in 2011, was paid 7,002 bitcoin for making an early explainer video about how Bitcoin worked. He stored the keys on an encrypted hard drive called an IronKey. He wrote the password on a piece of paper. He lost the piece of paper. The IronKey allows ten password attempts before it permanently encrypts itself. When the New York Times profiled Thomas in 2021, he had already used eight of his ten. As of late 2025, the wallet remains locked and two attempts remain. A cybersecurity firm called Unciphered claimed in 2023 to have developed an IronKey unlock method and offered to help; Thomas declined, citing commitments with two other teams. At today's prices the locked wallet is worth around $525 million³.

One man lost the device. The other lost the password to the device. Either failure mode would have been irrelevant if a seed phrase on paper had been kept in a separate, fireproof location. Every safeguard in the DO column above would have saved both of them.

The Solution That Already Exists

Chainalysis estimates that somewhere between 2.3 and 3.7 million bitcoin, roughly 11% to 18% of every coin that will ever exist, are permanently lost, mostly in stories just like Howells' and Thomas's⁴. Forgotten passwords. Discarded hard drives. Seed phrases never written down, or written down and lost, or written down and then photographed and then deleted.

Your seed phrase is the fix that already exists. If you lose your device, the words rebuild the wallet. If you lose the device and the words, your bitcoin joins the eleven to eighteen percent. There is no recovery. There is no customer support. There is only the phrase.

¹ BIP-39 (Bitcoin Improvement Proposal 39), github.com/bitcoin/bips. ² Wikipedia, Bitcoin buried in Newport landfill, wikipedia.org; UK High Court dismissal (January 2025): Hausfeld legal analysis, hausfeld.com. ³ Trakx, Stefan Thomas Locked Out of 7,002 BTC, trakx.io; Unciphered unlock-method offer: CCN, ccn.com. ⁴ Chainalysis 2025 lost-bitcoin estimate (2.3M–3.7M BTC, ~11–18% of total supply), synthesis via CoinLedger, coinledger.io; see also BitGo, Bitcoin's Invisible Burn, bitgo.com.

Your First Self-Custody Setup

Everything before this point was preparation. This section is the actual playbook: the steps you can run this weekend to move from "I read about Bitcoin" to "I hold Bitcoin." It's six steps. Most of them take five minutes. The whole sequence, including waiting for a bank link to clear and a test transaction to confirm, fits inside an afternoon.

Before You Start

Have these ready: a government-issued photo ID, a phone or computer to install a wallet on, a bank account you can link to an exchange, and a piece of paper and a pen for the seed phrase. Skip the paper at your own peril; you will need it before this afternoon ends.

Six Steps to Self-Custody

Step 1

Pick an exchange and verify your identity

Use a Bitcoin-only exchange: Strike, River, or Swan. Sign up with your email, complete identity verification (driver's license or passport, plus a selfie in some cases), and link a bank account. Verification is usually approved within a few hours. If you prefer a familiar mainstream interface, Coinbase works, just ignore everything in the app that isn't bitcoin.

Step 2

Set up a recurring buy (DCA)

Schedule an automatic recurring purchase; weekly is the most common cadence. Even $10 or $25 a week is enough to start. The amount matters less than the consistency. Set it once and forget it. The goal is to remove every emotional decision from your buying process.

Step 3

Install a self-custody wallet

For your first wallet, install Blue Wallet or Muun on your phone, or Sparrow on your desktop. All three are free and open-source. This is your hot wallet; it lives on a connected device, so don't keep large amounts on it. Treat it the way you treat the cash in your physical wallet: small, replaceable, for spending.

Step 4

Write down the seed phrase, on paper, by hand

The wallet will show you twelve or twenty-four words. Write them down on paper, in order, by hand. Do not photograph them, screenshot them, or type them into anything else. Put the paper in a fireproof safe or a secure location. If you skipped the paper in "Before You Start," go get it now. This step is the entire reason for the lesson.

Step 5

Withdraw from the exchange: start with a test

In your wallet, generate a receive address (a long string starting with bc1). Copy it. In your exchange's withdrawal screen, paste it. Send a small test amount first, a few dollars, and confirm it lands in your wallet before sending the rest. This costs a few cents in network fees and is the single best safeguard against typos and clipboard malware.

Step 6

Confirm the transaction. You now hold bitcoin.

Within ten to thirty minutes, the wallet will show one or more confirmations. Once confirmed, the bitcoin is in your custody, held by your keys, on your device, recorded in a public ledger that no exchange, government, or company can edit. From the network's point of view, you are the owner. Welcome to self-custody.

When to Upgrade to a Hardware Wallet

A hot wallet is fine for small amounts and for getting comfortable with the mechanics. As your stack grows, the calculation changes. There is no universal threshold; only you know how much you'd be devastated to lose. A working rule of thumb: once your bitcoin balance exceeds what you would lose sleep over, it's time. Order one of the devices from the Bitcoin-only shortlist in Section 4. Move your bitcoin to it. From that point on, the hardware wallet is your savings vault and the hot wallet is your spending money.

Hot wallet is your pocket. Cold wallet is your vault. Both belong to you.

Plan for the Day You're Not Here

Self-custody also means inheritance. If you walk out the door tomorrow and don't come back, can your spouse, your sibling, or your adult child actually get to your bitcoin? If the answer is "no" or "I don't know," your stack functions less like an inheritance and more like a vault that auto-locks when you die. Bitcoin inheritance is not a feature your wallet ships with; it's something you build, deliberately, while you still can.

A Three-Part Inheritance Plan You Can Set Up This Weekend

1. A sealed letter to one trusted person. Inside: a brief explanation of what bitcoin is, the fact that you hold some, and the location of your seed-phrase backup. Not the seed phrase itself, only the location. Keep the letter with your will, in a safe deposit box, or with your attorney.

2. A clearly-labeled seed-phrase backup, somewhere durable. Paper in a fireproof safe is fine for small amounts; an engraved steel plate is better for large ones. The location must be one your trusted person can actually reach.

3. A technical contact. Note the name of someone who can walk your heir through the mechanics: a friend who already self-custodies, or a paid professional. Bitcoin inheritance is not intuitive; nobody should have to learn it during a funeral.

For larger holdings or for families that want a structured solution, services like Casa and Unchained offer multisig-based inheritance products with documented recovery procedures. Worth investigating once your stack crosses from "small" to "real wealth."¹

Scripture frames inheritance as stewardship: "A good man leaves an inheritance to his children's children" (Proverbs 13:22). The three steps above are how that verse meets self-custody: keys, location, contact. What you held while you were here gets handed off cleanly to those you were holding for.

"Bitcoin is the first time in history we have a money where you can be your own bank, and 'being your own bank' means you carry the risks a bank used to carry. The bank is you now. Act accordingly."

Andreas Antonopoulos, paraphrased from The Internet of Money talks²

¹ Casa multisig and inheritance products, keys.casa. Unchained collaborative custody and inheritance, unchained.com/inheritance. ² Andreas Antonopoulos, The Internet of Money (Volumes 1–3), drawing on the recurring "the bank is you now" framing across his talks.

Everything That Goes Wrong Is Human

Imagine This

You get a message: a text, an email, a DM, or a phone call. It's from someone who seems to work for your exchange. They know your name. They reference a recent transaction. They are calling because they have detected unusual activity on your account, and they need to verify you are you before they can protect your funds. They sound professional. They sound in a hurry. They need just one piece of information (a code, a password, a single confirmation) and everything will be fine. You have ninety seconds to answer before the security timer locks your account.

The Bitcoin protocol itself has not been broken. In seventeen years, nobody has forged a valid signature, double-spent a confirmed transaction, or cracked the cryptography at the root of the system. Every dollar of bitcoin that has ever been stolen was stolen around the protocol, not through it. Someone tricked a person. Someone compromised an exchange's infrastructure. Someone intercepted a text. Someone kicked down a door.

In 2025 alone, that "around-the-protocol" ecosystem lost roughly $3.5 billion to scams, phishing, and theft, with social engineering driving more than half of it¹. The rest of this section walks through the three attack shapes that account for most of those losses: what they look like, who they hit recently, and what the defending habit actually is. The rules at the end aren't a checklist to skim and forget. They're the defaults you leave running on your life.

Attack #1: Social Engineering, Tricking a Human Into Handing Over the Keys

The most common attack in Bitcoin has nothing to do with cryptography. It is convincing a person to give up the keys voluntarily. The attacker impersonates a support team, an exchange, a wallet company, a celebrity, a government agency, a friend, anyone whose authority the victim won't think to question in the moment. The goal is always the same: get the seed phrase, the password, the one-time code, the click.

A Real Story: The 2020 Twitter Hack

In July 2020, attackers compromised the Twitter accounts of Barack Obama, Joe Biden, Elon Musk, Bill Gates, Apple, and dozens more, using, it turned out, an internal Twitter customer-service tool. Within an hour, every one of those accounts was posting the same message: send any amount of bitcoin to this address and I'll send back double. In four hours, people sent over $120,000 in bitcoin. It was an obvious scam. It worked because the messages came from names the victims trusted. The lead attacker, Graham Ivan Clark, was seventeen years old. He was sentenced to three years in 2021 as a minor².

The 2020 playbook is still running in 2026, and the tools have gotten sharper. AI voice cloning now lets attackers impersonate real support staff on the phone, convincing voices built from seconds of audio scraped from YouTube, podcasts, or social-media clips. The May 2025 Coinbase insider breach we named in Section 3 fed directly into a wave of these calls: attackers knew the victim's name, address, and which exchange they used, then called pretending to be Coinbase security, referenced real transaction details to build trust, and walked the victim into handing over one-time codes³. Hundreds of millions of dollars moved that way in 2025 alone.

The Seed-Phrase Recognition Rule

No legitimate company, support team, exchange, wallet manufacturer, firmware update, airdrop, tax agent, or recovery service will ever ask for your seed phrase. Ever. Not to verify you. Not to upgrade you. Not to help you. Not to process a refund. The existence of the request is the identification: "We cannot and will not ever ask for your seed phrase" is the only real support answer. Anything else is an attack.

Train yourself to recognize the shape, not just the red flags. The shape is anyone who needs your twelve or twenty-four words to help you. The red flags (urgency, authority, fear, a countdown timer, a strange email domain) come and go. The shape is permanent.

Attack #2: Digital Trickery, Swapping Your Address for Theirs

The second class is less showy but arguably more devastating, because it targets the exact moment you think you're being careful: sending bitcoin. Address poisoning and clipboard-hijacking malware both exploit the same fact: Bitcoin addresses are long strings of random characters that nobody memorizes. The attacker either seeds your transaction history with a nearly-identical address, or silently swaps whatever you copied with their own address the moment you paste. If you don't check, you send your bitcoin to them. Once confirmed, the transaction is irreversible.

A Real Story: The $50 Million Address-Poisoning Theft

In December 2025, a crypto user needed to send a large transfer. Like most people, they copied the recipient's address from a previous transaction in their own history, a habit that feels safer than pasting from an email or chat. But the attacker had been watching that wallet for weeks. They had sent a tiny "dust" transaction from a newly-generated address whose first six and last six characters matched the real recipient's exactly. The victim saw the address in their transaction history, verified the first and last characters, copied it, and sent. $49,999,950 transferred to the attacker in a single confirmation⁴.

The Hardware-Wallet-Screen Rule

For any transaction you care about, do not trust the address shown on your computer or phone. Trust only the address shown on your hardware wallet's own screen. The device displays the destination address from its own signing memory, not from whatever the browser or app is feeding it. Malware on the host machine can rewrite what you see on the host. It cannot rewrite what the device shows you.

Compare the first six and last six characters between what the device shows and what you intended. For anything above pocket money, pair the screen check with the test-transaction habit from Step 5 of Section 6: a few dollars first, confirmed, before the rest.

Attack #3: The Physical Threat, The $5 Wrench

The third attack class is the one most beginners underestimate, because it doesn't look like a Bitcoin attack. It looks like a home invasion, a kidnapping, a fake postal worker at the door. It's called the "$5 wrench attack" after a famous comic: why spend a million dollars on cryptography when you can spend five dollars on a wrench and hit the person until they hand over the keys?⁵

In 2023, there were 18 documented physical crypto attacks worldwide. In 2024, there were 24. In 2025, there were at least 25 by mid-year, a 75% year-over-year surge, with confirmed losses topping $40.9 million⁶. The trade press describes it as "a record year for wrench attacks." Roughly 45% begin with social engineering (fake postal workers, fake delivery drivers, fake government or military personnel at the door) before the physical phase begins.

A Real Story: David Balland, January 2025

David Balland is a co-founder of Ledger, the company that, arguably more than any other, built the modern hardware-wallet industry. In January 2025, Balland and his wife were abducted from their home in France. The attackers severed one of Balland's fingers and sent video to his business partner to accelerate the ransom demand. They wanted €10 million in crypto. French police located and raided the safehouse within days; Balland was recovered alive, and multiple suspects were arrested⁷. The man who built the product designed to protect bitcoin was attacked physically because his name was public.

Earlier the same decade, a family in British Columbia was attacked by men posing as postal workers, bound and waterboarded in their own home, and robbed of roughly $1.6 million in crypto⁸. The attackers knew the victims held bitcoin before they ever knocked on the door.

The Privacy Rule

Don't post your stack on social media. Don't tell strangers, or even casual acquaintances, how much bitcoin you own. Don't mention it at parties, on podcasts, or in group chats. Don't discuss large holdings over unencrypted channels. Don't let exchange-breached databases match your real name to a home address with a known bitcoin-holder profile.

This is the one rule that cannot be reversed. A seed phrase can be rewritten onto a new plate. A leaked holding amount cannot be un-leaked. Silence is part of the security posture.

Your Security Defaults

Every rule below was paid for in losses other people took so you don't have to. Treat them as the defaults that run in the background of your life as a bitcoin holder.

Withdraw from exchanges fast. Buy, then move it to your own wallet the same day. Every story in Section 3 happened to people who intended to move their bitcoin "later."
Verify addresses on the hardware wallet's screen. Trust the device, not the host machine. Send a test transaction first for anything above pocket money.
Never share your seed phrase; recognize the shape, not just the red flags. The existence of the request is the identification.
Keep your holdings private. Silence is armor.
Use strong, unique PINs and passwords. Not your birthday. Not your bank PIN. Not reused from anywhere else.
Plan for inheritance. The three-part plan from Section 6 (letter, backup, contact), set up this weekend.

The Prudent See Danger

"The prudent sees danger and hides himself; the simple go on and are punished."

Proverbs 22:3, repeated almost verbatim in 27:12

Scripture names wisdom this way: the wise one sees what's coming and takes cover. The foolish one walks past it and pays the price. The stories in this section are what "walks past it" looks like in 2025. The rules above are what "takes cover" looks like. Nothing in this lesson is paranoia; it's stewardship, and stewardship is biblical wisdom applied to the asset in your care.

The protocol has done its part for seventeen years. Now you do yours.

¹ Coinpedia, 2025 Becomes One of Crypto's Worst Years, coinpedia.org; Chainalysis, 2025 Mid-Year Crypto Crime Update (social-engineering share ~55.3% of 2025 losses), chainalysis.com. ² U.S. Department of Justice and Florida Department of Law Enforcement press releases on Graham Ivan Clark's 2021 sentencing; FBI case summary of the July 15, 2020 Twitter incident. ³ Coinbase insider breach coverage: BleepingComputer, May 2025, bleepingcomputer.com. AI voice-cloning in 2025 social-engineering attacks: Spacelift, Social Engineering Statistics, spacelift.io. ⁴ CoinDesk, December 2025, coindesk.com; clipboard-hijacking primer: Halborn, halborn.com. ⁵ xkcd #538, "Security," the origin of the "$5 wrench" formulation. Merkle Science primer: merklescience.com. ⁶ The Block, Record Year for Wrench Attacks, theblock.co; Decrypt, Grisliest Wrench Attacks of 2025, decrypt.co; BitPinas, 2025 Weekly-Average Threat, bitpinas.com. ⁷ French law enforcement reports on the Balland kidnapping, January 2025; Decrypt overview linked in source 6 above. ⁸ British Columbia family wrench attack, 2024, covered in multiple wrench-attack roundups including The Block's Record Year piece (source 6).

Common Questions

Q: Which exchange should I use?

For Bitcoin-only focus and transparent fees, Strike, River, or Swan. Keep it simple at first. Swan doesn't even allow you to sell natively through the dashboard, building good habits from the beginning.

Q: Do I need a hardware wallet right away, or can I start with a hot wallet?

Start with a hot wallet: Blue Wallet, Muun, or Sparrow. It's free, it's fast, and it gets you self-custodying today. When your balance crosses the amount you'd lose sleep over (only you know that number), that's when the $69–$299 for a hardware wallet is the cheapest insurance you'll buy. Hot wallet for spending. Cold wallet for saving. Both belong to you.

Q: What if I lose my hardware wallet?

If you have your seed phrase, you've lost nothing. Buy a new device (any BIP-39-compatible hardware wallet will do), enter your seed phrase, and every satoshi is still sitting there. The device is a signing tool. The seed phrase is the wallet. This is why the paper backup matters more than the plastic one.

Q: Is a Bitcoin ETF safer than self-custody?

Safer from you making a mistake? Maybe. Safer from systemic risk? No. An ETF share is a securities claim on bitcoin held by a custodian; you are trusting the ETF issuer, its custodian (85% of spot-ETF bitcoin sits at Coinbase), your brokerage, and the clearing infrastructure between all of them. Self-custody removes every one of those parties. For a 401(k) or IRA that can't hold bitcoin directly, an ETF is a reasonable on-ramp. For everything else, understand the trade: you've moved the counterparty risk, not removed it.

Q: What if I send bitcoin to the wrong address?

It's gone. Bitcoin transactions are irreversible by design; that's what makes the network censorship-resistant. Which is why the Section 7 rule matters: verify the address on your hardware wallet's own screen (malware on your computer can't change what the device shows), and send a small test transaction first for anything above pocket money. A few cents of network fees is the price of not losing everything to a typo or a clipboard-hijacking attack.

Key Takeaways

The exchange is an on-ramp, not a vault. Withdraw to your own wallet the same day you buy. Every story in Section 3 happened to someone who intended to "do it later."
A wallet holds keys, not coins. Whoever has the keys controls the bitcoin; from the network's point of view, that is the definition of ownership.
Your seed phrase is the wallet. Paper, by hand, in a fireproof and private location. Never on a screen. Anyone who asks for it is an attacker; that request is the identification.
Dollar-cost average. Consistency beats timing. Same amount, same day, every week, until the habit is boring, then keep going.
Bitcoin-only hardware wallets are the step up. Coldcard, Passport Core, or Jade once your stack crosses the line you'd lose sleep over. Hot for spending. Cold for saving. You for everything.
The protocol has held for seventeen years. The weakest link in your custody is always human. The defense is recognizing the shape of the attack, not just the red flags, and treating the rules in Section 7 as defaults that run in the background of your life.

Resource	What You'll Learn
Bitcoin: A Peer-to-Peer Electronic Cash System, Satoshi Nakamoto (2008)	Read Sections 1 and 2 ("Introduction" and "Transactions") alongside Section 3 of this lesson. The whitepaper's single-sentence case for "proof instead of trust" is the structural argument every custody rule in this lesson descends from.
The Bitcoin Standard, Saifedean Ammous (Wiley, 2018)	Chapter 8, "Digital Money," frames self-custody as the only honest configuration for sovereign money. Pair with Section 4 of this lesson.
Broken Money, Lyn Alden (Timestamp Press, 2023)	Chapter 14, "Digital Bitcoin," is the sharpest written treatment of counterparty risk and the ETF-vs-self-custody trade-off; matches Sections 3 and 4.
10x Security Bitcoin Guide, Michael Flaxman (ongoing)	The most thorough open-source operational-security walkthrough available: seed storage, multisig, inheritance, adversarial threats. Aligns with Sections 4–7; read the "Threat Model" and "Protecting Your Seed" sections first.
BTC Sessions: Hardware Wallet Walkthroughs, Ben Perrin (YouTube)	Pick the Coldcard Mk4 or Blockstream Jade setup walkthrough (10–15 min each). Turns Section 4's hardware shortlist into an afternoon task you can actually do.
Is Holding Your Own Keys Worth It?, Unchained Capital	Issue-specific depth on the ETF-vs-self-custody calculation covered in Section 3: counterparty chain, Coinbase concentration, and what systemic scenarios would test each.
The Grisliest Bitcoin & Crypto Wrench Attacks of 2025, Decrypt	Concrete 2025 case studies on the physical attacks discussed in Section 7, including the Balland case. Read only if you want to take the privacy rule even more seriously.

Glossary

Terms with a dotted orange underline in this lesson are clickable for an inline definition. This section is the full reference.

Address Poisoning: A scam where an attacker sends a tiny "dust" transaction from a newly-generated address whose first six and last six characters match the victim's real counterparty. The hope is that the victim will copy the attacker's address from their own transaction history. Defense: verify the full address on the hardware wallet's screen.
Bitcoin ATM: A physical machine that lets you buy bitcoin with cash. Convenient but expensive: average US buy fees 10–15%, with round-trip costs that can hit 17%.
Cold Wallet (Cold Storage): Bitcoin held using keys stored offline, typically on a hardware wallet. The private key never touches an internet-connected device.
Collaborative Custody: A wallet design (used by Bitkey, Casa, Unchained) where multiple keys are required to move funds, with at least one held by a third party. Easier recovery than pure self-custody, but the third party is one of the parties capable of signing.
Custody: Who holds the private keys. Self-custody means you do; exchange custody means a third party does.
Custody Spectrum: A ranking of the major Bitcoin holding configurations from most counterparty risk (exchange) to least (multisig). "Better" means "fewer people between you and your bitcoin."
Dollar-Cost Averaging (DCA): Buying a fixed dollar amount of bitcoin at regular intervals regardless of price. Smooths volatility, removes emotion, and outperforms most attempts to time the market.
ETF (Spot Bitcoin): A regulated financial product that lets investors buy shares representing bitcoin held by a custodian. The share is a securities claim on bitcoin, not bitcoin itself. ~85% of ETF-held bitcoin sits at Coinbase.
Exchange: A platform where bitcoin is bought and sold for traditional currency. An on-ramp, not a vault; withdraw to your own wallet the same day you buy.
Hardware Wallet: A small dedicated device that stores private keys offline. Transactions are signed inside the device; the keys never touch the internet-connected machine. Examples: Coldcard, Foundation Passport Core, Blockstream Jade, BitBox, Trezor's Bitcoin-only edition. All Bitcoin-only.
Hot Wallet: A wallet that runs as software on an internet-connected device (phone or computer). Convenient for spending; vulnerable to whatever the device is vulnerable to. Examples: Blue Wallet, Muun, Sparrow.
KYC (Know Your Customer): Identity verification required by regulated exchanges. Government ID, proof of address, sometimes a live selfie. Required by law in most jurisdictions.
Multisig (Multi-Signature): A wallet configuration requiring multiple keys to authorize a transaction (e.g., 2-of-3). Eliminates single points of failure. Used for high-value holdings and structured inheritance.
Not Your Keys, Not Your Coins: Andreas Antonopoulos's mantra. If you don't control the private keys, the bitcoin isn't really yours; it's an IOU from whoever does. The structural objection to leaving bitcoin on an exchange.
Phishing: A social-engineering attack that impersonates a legitimate service to trick you into revealing your seed phrase, password, or one-time codes. The single most common way bitcoin is stolen.
Private Key: The cryptographic secret that authorizes spending of specific bitcoin. Whoever has the key can move the coins. Your seed phrase is a human-readable encoding of this key.
Seed Phrase: A 12 or 24 word backup of a wallet's private keys, drawn from a standardized 2,048-word dictionary (BIP-39). Anyone who has the words controls the wallet. Write it on paper, by hand, in a fireproof location, never on a screen.
Self-Custody: Holding your own private keys rather than trusting a third party. The only configuration in which Bitcoin's neutrality reaches the user.
Wallet: Software or hardware that manages private keys and lets the user send and receive bitcoin. Holds keys, not coins; the coins live on the public ledger every node maintains.
Wrench Attack: A physical attack where the attacker uses force or threat of force to compel a bitcoin holder to hand over their keys. Named after an xkcd comic showing that a $5 wrench bypasses a million dollars of cryptography. 2025 was a record year, at least 25 documented incidents by mid-year.

Theory's Over. Time to Bring It to the Real World.

How to Actually Get Bitcoin

The Exchange Is an On-Ramp, Not a Vault

A Brief History of Exchange Failures

"But What About an ETF?"

Your Keys, Your Coins

The Custody Spectrum

What a Wallet Actually Is

Hot vs. Cold

Choosing a Hardware Wallet: The Bitcoin-Only Shortlist

The Twelve Words That Are Your Bitcoin

The Rules: No Exceptions

Your First Self-Custody Setup

Pick an exchange and verify your identity

Set up a recurring buy (DCA)

Install a self-custody wallet

Write down the seed phrase, on paper, by hand

Withdraw from the exchange: start with a test

Confirm the transaction. You now hold bitcoin.

When to Upgrade to a Hardware Wallet

Plan for the Day You're Not Here

Everything That Goes Wrong Is Human

Attack #1: Social Engineering, Tricking a Human Into Handing Over the Keys

Attack #2: Digital Trickery, Swapping Your Address for Theirs

Attack #3: The Physical Threat, The $5 Wrench

Your Security Defaults

Common Questions

Key Takeaways

Further Reading

Glossary