Skip to main content
T TON Adoption
RU
Security PILLAR · 2026

Security on TON 2026: complete asset protection guide

Storage, phishing, drainer sites, hardware wallets, multisig, bug bounty and incident forensics — the security map for TON users and teams in 2026.

Author
· research lead · security desk
Published
9 min read

Security on TON in 2026 is no longer “memorize 12 words and don’t lose them”. It’s a layered discipline: correct seed-phrase storage, phishing defence, hot vs cold wallet choices, multisig for large balances, understanding smart-contract risk, incident forensics. With ecosystem TVL at $300–500M and the gift market trading hundreds of millions in volume, there are more targets and more sophisticated attacks. This guide is the map across each of those layers, with links to deep-dives.

TL;DR — 10 rules that cover 90% of attacks

  1. Seed phrase offline only — paper, ideally a metal plate. No screenshots, no cloud, no password managers.
  2. Hardware wallet for large balancesLedger or Trezor. Details — hardware vs software storage.
  3. Don’t sign “approve all”TON Connect doesn’t require blanket approvals (unlike EVM). If a dApp asks, it’s a red flag.
  4. Open wallets and dApps only via verified entry points — official sites from Twitter/Telegram, ton.app for the catalogue.
  5. Don’t hold long-term balances on an exchange — exchanges fail, block withdrawals, get hacked. Risk breakdown — storing TON on CEX vs wallet.
  6. 2FA on Telegram is mandatory — taking over an account lets phishers drain gifts and anonymous numbers without touching the wallet.
  7. Multisig for $50k+ or for team wallets — details in our multisig for teams guide.
  8. Read every transaction before signing — what you’re transferring, to whom, in what amount. Phishing sites hide drains behind unreadable hex.
  9. Test new dApps with a small amount — $10–50 the first time, before committing significant capital.
  10. At least one backup recovery path — written seed phrase in a physical location different from the primary one.

Each layer in detail below.

Layer 1: correct seed-phrase storage

The seed phrase (24 BIP39 words for TON) is the only proof of wallet ownership. Not a password, not a device PIN, not biometrics. Everything that isn’t the seed phrase is convenience; the seed phrase is ownership.

Top user mistakes:

  • Screenshot of the seed phrase. Cloud (iCloud, Google Photos) auto-syncs — meaning the phrase is visible to anyone with access to your cloud account. One leaked iCloud password = TON loss.
  • Saving in a password manager. Convenient for passwords, not for seed phrases: managers run on devices that can be compromised via malware.
  • Photo on the phone. Same issue as a screenshot — auto-syncs to cloud.
  • Plain text file on the computer. Any malware with disk access finds the phrase in minutes — attackers have ready-made scanners.

The correct practice:

  • Paper in a secure physical location — the minimum.
  • Metal plate (Cryptosteel, Billfodl, or DIY-engraved stainless) — better: won’t burn, won’t get wet, won’t fade in 20 years.
  • Splitting the phrase across locations for paranoid setups — e.g., 12 words in one place, 12 in another. Downside: lose one half, lose everything.
  • Alternative — BIP39 passphrase (25th word). Extends protection but adds another point of failure.

Full breakdown — secure seed phrase storage practices. If you already lost access and need recovery — how to recover a TON wallet from a seed phrase.

Layer 2: hot vs cold — where to keep what

A “hot” wallet is software (Tonkeeper, MyTonWallet, Tonhub) on phone or browser extension. Connected to the internet, convenient for everyday use. Vulnerable to malware and phishing.

A “cold” wallet is hardware (Ledger, Trezor) or air-gapped (separate offline phone). The seed never leaves the device; transactions are signed on the device, with only the finished signature visible in the main system.

Practical allocation:

  • Up to $1k — software wallet is fine if you have basic discipline (seed offline, Telegram 2FA). Hardware is overkill.
  • $1k–$10k — software OK for daily use, but hardware ($80–150) is worth it as insurance. Most on hardware, a small slice on software for DeFi and gifts.
  • $10k+ — hardware mandatory. Software holds only a “trading” balance.
  • $50k+ — add multisig (see layer 4).

For TON hardware support: Ledger Nano S Plus, Nano X and Stax support TON via the Ledger Live TON app. Trezor — through third-party integrations (Tonkeeper supports Trezor). Model breakdown — Ledger and Trezor for TON: support. Setup walkthrough — how to connect Ledger to a TON wallet.

Cold storage isn’t just hardware. Air-gapped and multi-device strategies — in hardware vs software TON storage.

Layer 3: phishing and drainers — the main 2026 threat

Only a small share of TON users lose funds to contract vulnerabilities. The vast majority — to phishing and drainer sites. That’s the technical reality worth accepting.

How a wallet phishing site works

The attacker registers a domain visually indistinguishable from the real one (tonkeeper.comtonkeeрer.com with a Cyrillic р, tonkeeper-app.com, tonkeeper.io, and hundreds of variations). Through Google ads, Telegram chat links, or fake push notifications, they lure the user. On the site — an exact replica of the legitimate wallet with one difference: when you “recover” the seed phrase, you type it straight into an input that sends it to the attacker.

Full anatomy — anatomy of phishing: fake wallet sites.

Drainer sites — the next level

Drainers don’t ask for your seed. You connect via TON Connect (looks legitimate), and the site, masquerading as “mint NFT”, “claim airdrop”, “verify wallet”, shows a transaction to sign. The hex is opaque — the user signs thinking they’re minting an NFT, but actually grants the drainer permission to move gifts or liquid assets.

Fake Telegram bots impersonating Portals, Tonnel, MRKT, getgems-bot are especially dangerous. Full mechanic breakdown — drainer sites in TON: how they work.

Top-10 Telegram scams

From “fake support bot DM’d me” to “join the airdrop group via this bot, the bot takes over your Telegram session” — a catalogue of the most common attacks in TON Telegram: top-10 TON scams on Telegram and how to defend.

The cardinal rule for working with airdrops and retroactive campaigns — never “approve all”, never paste seed phrases into third-party sites, verify every mini-app via ton.app: how to farm TON drops safely.

Layer 4: multisig for large balances and teams

A single-signature wallet is a single point of failure. One compromised device, one phished signature, one lost seed = everything gone. Multisig requires M of N signatures (e.g., 2-of-3 or 3-of-5), without which the transaction won’t go through.

When multisig is needed:

  • Teams and DAOs — mandatory. Without multisig, a single admin = insider-attack risk and compromise risk.
  • Personal wallets with $50k+ — strongly recommended. Operational friction (multiple devices required) is cheaper than the loss.
  • Protocol treasuries — industry standard. 3-of-5 or 4-of-7 with geographically distributed signers.

Downsides:

  • Harder recovery: need access to M devices simultaneously.
  • Higher gas: each transaction needs multiple signatures.
  • More complex UX: every operation requires coordination among signers.

Full TON multisig implementations breakdown, specific SDKs and patterns — multisig on TON: team security.

Layer 5: smart-contract risk and audits

This layer is for those who use DeFi, lending, perps, bridges. Here the risk isn’t “you signed the wrong thing” but “the contract holding your assets has a bug”.

What to check before depositing into a protocol

  • Public audit — CertiK, SlowMist, Trail of Bits, Hacken. At least one, ideally two independent reviews.
  • Contract age — the longer mainnet has run without incident, the higher the trust. Less than 3 months in mainnet = elevated risk.
  • TVL and distribution — large TVL with few major depositors isn’t a security signal (one whale exit can break liquidity).
  • Open source — without public code, no independent verification is possible. Closed-source DeFi = red flag.
  • Bug bounty programme — an active programme signals team maturity around security. TON programmes catalogue — bug bounty on TON: programs and payouts.

Bug classes on TON

Detailed technical breakdown in bug bounty on TON, but the short list: reentrancy via async messages, TVM exotic-cell attacks, validator signature bypass (as in TAC drain), jetton replay / double-spend, state-init derivation bypass, highload-V3 race conditions. These aren’t Solidity bugs — TON has its own specifics.

Audit tools

Acton Foundry — the de facto standard for TON auditors: mutation testing, retrace, lint rules from CertiK/SlowMist. Misti — static analyser for Tact. TSA — symbolic execution.

Layer 6: bridge risk and incident forensics

Bridges are the highest-payout bug category and the prime target for attackers. TAC bridge drain in May 2026 (~$2.5M+ in wrapped jettons + 384k freshly-minted TAC, because the 2,399-line TASM admin contract never called CHKSIGN to verify validator signatures) showed that bridge validator logic remains fragile even at protocols with millions in TVL.

Detailed attack breakdown — TAC bridge drain 2026: attack analysis. User takeaway: avoid wrapped assets for long-term holding. If you want Bitcoin or Ethereum-token exposure on TON, hold the assets where they’re native and bridge only just before use.

Layer 7: Telegram operational hygiene

Telegram is the infrastructure layer for TON: wallets (mini-apps), marketplaces, dApps all run through it. Compromising your Telegram = partial compromise of all connected assets, especially gifts and anonymous numbers.

Minimum:

  • Password 2FA — mandatory. Settings → Privacy and Security → Two-Step Verification.
  • Session audit — Settings → Devices. Unknown sessions = log out all + change password immediately.
  • No high-value gifts or anonymous numbers on the main account. A separate account for large assets with minimal public activity.
  • Never DM “support bots”. Tonkeeper, MyTonWallet, exchanges don’t message users first.

Layer 8: what to do if you’ve already been hacked

Incident protocol:

  1. Don’t panic — you have 5–15 minutes before the drainer takes everything. Those minutes decide the outcome.
  2. Disconnect the wallet from all dApps — TON Connect settings.
  3. Move remaining assets to a clean wallet — with a new seed phrase, ideally hardware. Not “the same wallet with a new seed” — wallet = address = seed.
  4. Never use the compromised wallet again. The seed phrase is permanently exposed.
  5. Change passwords — Telegram, email, exchanges. If you reused passwords — this is the moment.
  6. Document — transaction screenshots, timestamps, site domain (if phishing). For police reports, community disclosure channels, and potential mixer-analysis recovery.
  7. Notify the community — TON Society security channel. It saves the next victims and occasionally leads to attacker identification.

Recovering drained crypto funds is practically impossible. Prevention is cheaper than cure.

Who should invest deeper

  • DeFi users with $10k+ in protocols — read the smart-contract risk and hardware-wallet sections.
  • High-volume gift traders — anti-phishing and TON Connect hygiene (drainers disguise themselves as marketplace prompts).
  • Teams and DAOs — multisig and operational procedures from day one.
  • Developers and auditors — bug bounty on TON, tooling (Acton, Misti, TSA), bug classes.
  • Holders with $50k+ — migrate to hardware + multisig, split seed across locations.

Glossary for this topic

Sources and deep reading

Further reading

Security is a process, not a one-off action. Even the most disciplined user faces, once a year, a scenario where they have to decide: sign or refuse, trust or not. That discipline is cheaper than rebuilding a drained balance from scratch.

Frequently asked

Three things: (1) keep your seed phrase offline — no screenshots, no cloud, ideally on a metal plate; (2) never sign 'approve all' in TON Connect — legitimate dApps only ask you to sign specific transactions; (3) open wallets and marketplaces only via verified entry points (official sites, ton.app), never via chat links or DMs. These three rules cover 90% of real-world attacks.
Depends on your risk profile. A hardware wallet (Ledger, Trezor) insures against malware and phishing signatures. It costs $80–150. If the loss in a compromise scenario would hurt, the hardware wallet pays for itself. For active gift or DeFi trading, hold a 'hot' balance in software (Tonkeeper, MyTonWallet) and the main balance on hardware.
For active trading — yes. For long-term storage — no. 'Not your keys, not your coins' still holds. Exchanges fail (FTX 2022), block withdrawals by jurisdiction (Binance for Russian users in 2025), get hacked. An exchange is temporary parking for trading; a self-custody wallet is permanent storage.
Immediate steps: (1) disconnect your wallet from the dApp in TON Connect settings; (2) move all remaining assets to a fresh wallet with a new seed phrase; (3) never reuse the compromised wallet — the seed phrase stays vulnerable forever; (4) check your Telegram for unauthorized sessions and enable 2FA. Recovering stolen funds is practically impossible.
TON Connect doesn't require 'approve all' (unlike EVM). But a phishing site can disguise a malicious transaction as a normal listing or swap — the user sees a familiar prompt and signs. Drainers usually hide real parameters behind opaque hex. Defence: open dApps only from verified entry points and read every transaction before signing.
For balances of $50k+ — yes. Multisig (e.g., 2-of-3) turns a single-device compromise from a catastrophe into an incident. Downsides: harder recovery (need multiple devices simultaneously), higher gas. For teams and DAOs, multisig is mandatory operational hygiene from day one.
Minimum: (1) cross-check the domain against the project's official Telegram/Twitter; (2) verify via ton.app that the dApp is listed; (3) check for a public audit (CertiK, SlowMist, Trail of Bits); (4) review TVL and contract age on Tonscan — a fresh unaudited contract with large TVL is a red flag. For large amounts, add a $10–50 test transaction first.
If the wallet is still installed and not wiped — urgently move all assets to a fresh wallet with a written seed phrase. Reinstalling a phone or laptop without the seed phrase = loss of assets. If the wallet is already inaccessible — assets are lost without recovery. This is the trade-off of self-custody.

Related

← Back to blog