1. Does this prompt mean that the private key has been stolen?
No, so do not panic when you see this message. The purpose of this prompt is to inform users that Ballet cold storage cards have different security attributes before and after the tamper-evident sticker and passphrase scratch-off are removed.
If you have already removed the tamper-evident sticker and passphrase scratch-off to send crypto assets from your cold storage card, it is possible for anyone with physical access to the card to secretly copy the private key entropy components without your knowledge. It does not indicate that a theft has occurred, but it is a reminder that you must ensure the physical security of the card so that no unauthorized person can access it.
2. What should I do after seeing this prompt? Can I still use this cold storage card?
From a security perspective, we advise you to transfer the remaining assets on the card to a new Ballet cold storage card and not add more assets to it.
Technically, the card can still be used to send, receive, and swap cryptocurrencies after the tamper-evident sticker and passphrase scratch-off have been removed, but you must take extra precautions to ensure that the card is physically secure if you want to use it again.
3. Is this prompt the result of malware?
No, this prompt is a legitimate message from Ballet introduced in Ballet Crypto App version 2.11.0 to provide a better understanding of Ballet cold storage cards’ tamper-evident security features.
4. Why did this prompt suddenly appear?
The Ballet Crypto App might auto-update on your device. This message was introduced in app version 2.11.0 to provide a better understanding of the Ballet cold storage card's tamper-evident security features.
5. How do I turn off the prompt?
You can dismiss the pop-up prompt by clicking on it, but you cannot permanently remove the yellow warning banner or change these default settings. When you close and reopen the app, the pop-up will reappear as a security reminder.
These notifications are designed to ensure that users have a clear understanding of Ballet cold storage cards’ tamper-evident security features and help them follow the proper security precautions. Please note that these pop-up messages will not compromise the security of your cold storage card.
6. What does this prompt mean?
The purpose of this prompt is to inform users that Ballet cold storage cards have different security attributes before and after the tamper-evident sticker and passphrase scratch-off are removed.
When you peel off the tamper-evident sticker, a hexagonal honeycomb pattern will appear. Before you peel off the sticker, there is no hexagonal pattern, indicating that no one has ever seen the encrypted private key entropy; therefore you can have complete confidence that it is safe to store crypto assets on the card. But after the sticker has been peeled off and the hexagonal pattern revealed, even if it is re-stuck in its original position, you must be certain that no unauthorized person has ever had physical access to the card, because it would be possible to secretly copy the encrypted private key entropy without your knowledge.
The same principle applies to the passphrase scratch-off. Before it is scratched off you can have complete confidence that no one has ever seen the passphrase. After it has been scratched off, it would be possible for anyone with physical access to the card to secretly copy the passphrase without your knowledge.
The best way to completely avoid the risk of unauthorized physical access to your cold storage card is to transfer the remaining crypto assets on your card to a new cold storage card or crypto wallet and not use it again.