# Security tips ### ⚡ Thor Safety Tip The blockchain battlefield is a dark forest — fight smart, stay alert.\ Two golden rules for every warrior: **1️⃣ Zero Trust**\ Never hand your keys to anyone or anything. Every “admin,” “bot,” or “plugin” asking for your private key is a trap. **2️⃣ Validate Everything**\ Check twice before signing once. Make security a habit. *** #### 🧠 Common Scams **⚔️ Fake Admins in TG**\ No Thor or Odin admin will ever DM you first.\ Scammers mimic usernames and bios — always verify from the official channels. **⚔️ Fake Groups**\ Never join random Telegram groups.\ Turn on:\ `Settings → Privacy & Security → Groups & Channels → “Nobody can add me.”` **⚔️ Phishing Links & “Verification” Pages**\ Ignore any site asking for your wallet, phone, or password.\ If you didn’t request it — it’s bait. **⚔️ Web3 Signature Traps**\ What you see = what you sign.\ Regularly check wallet approvals and revoke unknown permissions.\ Airdropped NFTs or “claim” sites can drain your SOL — avoid them. *** ### ⚠️ **Airdrop Scam Detection** Thor helps you identify suspicious tokens that appear in your wallet but were not actually purchased. Tokens flagged as potential scams will show: * An **Airdrop Scam** warning label * No PnL data * No average entry price * No market capitalization information *** ### 🔒 Shield Up: Protect Your Wallets **Telegram** * Enable 2-Step Verification * Hide your phone number * Use official apps only **Wallet** * Cancel unknown approvals * Enable auto-lock * Don’t install random browser extensions or apps *** ### 🧩 Device Safety * Don’t click unknown links or install shady files * Keep system updates current * Separate wallets: one for testing, one for storing * For important wallets: less is more — avoid unnecessary updates *** ### 🚨 If You’re Hacked 1. **Act fast** – Move remaining funds to a clean wallet 2. **Stay calm** – Disconnect the device, preserve evidence 3. **Trace it** – Identify the hacker’s address, fill [SlowMist recovery form](https://aml.slowmist.com/recovery-funds.html) {% hint style="danger" %} Security comes first with Thor. There are **no backdoors, no hidden permissions, no wallet access**. If your assets are compromised, review the safety steps above — Thor never touches or controls your funds. {% endhint %} --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.odin.tools/thor-trading-bot/thor-telegram-bot/security-tips.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.