2026-01-07 15:24:53

Here's something worth remembering: email is fundamentally broken. It's insecure, vulnerable to scams, surveillance-prone, and presents real security risks for anyone handling crypto assets.

The problems are structural—email wasn't built for privacy or protection. Layer on social login auth, and you're multiplying your attack surface exponentially.

If you're serious about security in Web3, treat email as a liability, not a solution. Explore passwordless authentication and hardware-based verification instead. Your private keys deserve better infrastructure.

This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.

13 Likes

Reward
13
5
Repost
Share

Comment

0/400

MoneyBurnerSociety

· 01-08 12:17

I can't believe I logged into the exchange with my email... Isn't this just opening the door for hackers?

View OriginalReply0

SerLiquidated

· 01-07 15:55

I've been saying for a long time that email is a trap; so many people have had their accounts hacked because of it... Hardware wallets are the real deal.

View OriginalReply0

BlockchainWorker

· 01-07 15:53

Email really should be phased out; anyone still using it to manage private keys needs to reflect. --- Hardware wallets combined with Passkey are the right way; email is long outdated. --- Social login verification? That's basically a suicide mission, with attack surfaces exploding. --- Well said, Email is a ticking time bomb in Web3. --- Using private keys with email is ridiculous; the more disastrous the combo, the more it is. --- Passwordless authentication must become widespread; otherwise, security issues in this space will never be solved. --- Structural flaws should be replaced; don't expect patches to save email. --- That's true security awareness; too many people still blindly trust email.

View OriginalReply0

StakoorNeverSleeps

· 01-07 15:46

Email really is a broken thing. I laugh every time I see Web3 people still using it. --- Hardware wallets + Passkey are the right way; email should have retired long ago. --- Every time I see "Login with email," I think of the risk of phishing again. So troublesome. --- Private key security should never rely on email. How many people still haven't realized this? --- The combination of social login + email = attack surface explosion. Why are people still using it? --- No, the idea that the attack surface increases multiple times is too conservative; it should be exponential.

View OriginalReply0

FrogInTheWell

· 01-07 15:31

Email is really a ticking time bomb, especially for crypto users... It's about time to switch to passwordless authentication. --- I've already turned off social login verification; too many people get phished. --- Hardware wallets combined with biometric authentication are the way to go. Don't trust this old-fashioned email system anymore. --- Well said about structural flaws; email is a product of a bygone era. --- Your private key is worth a hundred times more than your email password. Think it through. --- That's why Web3 is still niche; infrastructure needs to be upgraded. --- Have you tried passwordless authentication? Once you do, there's no going back. --- A bunch of phishing emails—who still dares to use email to manage private keys?

View OriginalReply0