Why exactly is it so unspeakably bad to ask users to input the seed phrase from a crypto wallet into a web extension? For software wallets like Exodus or Electrum, a seed phrase is fairly analogous to the “private key” that grants direct control of a single on-chain Bitcoin account. It is generated by an automatic system, and unlike, say, a Google password, even the wallet’s developer can’t see the phrase – or reset or recover it if it’s lost.



Source link