I got scammed/hacked

Description: Your account was compromised / you see transactions you did not authorize / Your funds are missing

If you notice unauthorized transactions, missing funds, or an unknown multi-sig on your Hyperliquid account, your wallet was likely compromised.

Hyperliquid is non-custodial. Only someone with access to your private key or seed phrase can sign transactions on your address’ behalf. If you see activity you didn’t initiate, it’s highly likely that your key was compromised, meaning someone else has control of your address.

What to do

  • Stop using the compromised address. Treat it as permanently unsafe ("burned")

  • Create a new wallet address using a trusted wallet provider

  • Transfer any remaining funds from your old wallet to your new one—this applies across all apps, not just Hyperliquid

  • Revoke smart contract permissions via https://revoke.cash to limit further access to your wallet

  • Clear your browser's cache and cookies, especially if you suspect there may be malware or phishing

  • Report the compromise to @seal_911_bot on Telegram. They may be able to help with recovery in some cases

  • Consider using a hardware wallet for a more secure setup (e.g., Ledger, Trezor, Keystone). Hardware wallets can be paired with browser wallets like Rabby to keep your private key off of the browser

  • Identify how you were compromised and determine if your device has malware. This helps ensure you do not repeat the same mistakes again

Moving forward, remember to always be vigilant

  • Never share your seed phrase

  • Don’t click on unknown links

  • Always read and double-check any transaction you sign

  • Assume most DMs are scams. Never share your private information

Last updated