Skip to main content
Don't invest unless you're prepared to lose all the money you invest. This is a high-risk investment, and you should not expect to be protected if something goes wrong. Take 2 min to learn more.

What Is Cold Storage in Crypto?

Keys that never touch the internet stop remote theft outright, but they do nothing for a lost backup: what cold storage is, its limits, and how to buy in without new risks.

beginner6 min readDan Clarke
Hero image for what-is-cold-storage

TL;DR

  • Cold storage means private keys generated and kept on a device that never connects to the internet.
  • It ends the whole remote-attack class, but does nothing about a lost seed phrase, fire, coercion or a found backup.
  • Buy hardware wallets new and direct from the maker, and set up a fresh seed yourself on first boot.
  • Purchases can be delivered straight to a cold wallet address, skipping the hot-wallet stopover.
  • Educational guide only, not financial advice.

In 2013 a hard drive left a house in Newport, South Wales, inside a bin bag, and ended up in the city's landfill along with everything else thrown out that week. On it sat the private keys to roughly 7,500 bitcoin. The owner, an IT worker called James Howells, has spent the years since petitioning Newport council for permission to excavate its landfill, and the council keeps saying no. Those keys were never hacked, never phished, never even online, they sit under a Welsh council tip and have not moved since.

That drive was cold storage, minus the one habit that mattered. So this guide covers the whole picture: what cold storage is, the attack class it genuinely ends, and the failure modes it does nothing about. The second list gets skipped in most write-ups, it gets equal billing here.

What counts as cold

A wallet is cold when its keys are generated and kept on a device that never connects to the internet, not rarely, never. Everything else is a hot wallet: the phone app, the browser extension, the exchange account, handy and permanently reachable by whatever compromises the device it lives on.

The clever part is the signing flow: an unsigned transaction travels to the offline device, it gets signed there, and only the signature comes back out for broadcast. The keys never move. Your laptop can be crawling with malware, your browser can be lying to your face, and the worst either of them ever touches is a finished signature, which is useless for stealing anything further.

Cold storage takes three main forms.

  • Hardware wallets, small signing devices built for exactly this job, and where nearly everyone lands: Trezor shipped the first commercial one in 2014, and Ledger, founded the same year, followed with the Nano S in 2016.

  • Fully air-gapped computers, a spare machine that never touches a network, more control and more effort, mostly the preserve of the deeply technical.

  • Paper wallets, keys printed on a sheet, common in bitcoin's early years and discouraged now: one copy, nothing to sign with, and paper loses arguments with water.

One whole class of attack, gone

Cold storage answers remote attack, and it answers it completely: malware on the laptop, a phishing payload in the inbox, a fake wallet app, a poisoned browser extension, a stranger three time zones away working through your phone. Every attack in that family needs keys it can reach over a network, and cold keys are not on one. Dead end. That family accounts for most of the horror stories beginners hear, which is why long-term holders put up with the faff of an offline device.

The failures it does nothing about

Now comes the half that people usually skip.

Cold storage does nothing about losing the seed phrase, and nothing about someone finding it: a burglar, a builder, a curious house guest reading the card in your desk drawer. It does nothing about coercion either, because a person standing in your kitchen has already beaten the air gap, and nothing about fire or flood taking the only copy you ever made.

Which brings Howells back: his keys have been cold since the drive last spun down, out of reach of every phishing kit and keylogger ever written, and it has not mattered once. A bin bag beat them in 2013, and more than a decade of petitions has not undone it. Cold storage without a tested backup is just a slower way to lose coins.

So the real work is the backup: write the seed down properly, keep copies in more than one place, and test a restore before the balance gets serious. The device is the cheap part of the arrangement.

When an exchange says cold storage

Exchanges advertise cold storage too, and the phrase means something narrower than it sounds: their keys are offline, yours do not exist. You hold a balance on the company's books, an IOU, and the coins stay theirs to manage or mismanage.

FTX collapsed in November 2022 with customer funds inside, and storage temperature had nothing to do with it. If a platform holds the keys, its cold storage protects the platform. Holding your own keys is a different arrangement with its own name, self-custody, and cold storage in the proper sense only exists inside it.

Buying one without importing new risks

The supply chain is the hole beginners miss, and it has a documented case attached. Ledger's customer database leaked in July 2020, names and postal addresses included. Afterwards, tampered devices dressed up as official replacements started turning up in customers' post, boxed convincingly enough to fool people who owned the real thing, and rigged to steal from anyone who used them.

Three rules close the hole.

  1. Buy new, direct from the manufacturer, never second-hand, never the discounted marketplace listing, whatever the saving, no exceptions.

  2. Initialise a fresh seed yourself on first boot, because a device that arrives with a recovery card already filled in has been set up by someone who kept a copy, so send it straight back.

  3. Verify the packaging and firmware the way the vendor documents, two minutes, once.

Running it day to day

Cold storage earns its friction on money you intend to keep. The pattern you see most is a split: the long-term pile stays cold and mostly forgotten, and a small hot float on the phone handles spending, experiments and whatever needs moving this week. Where your split sits is your call, and this is an explainer, not financial advice.

And one detail that surprises people: a new purchase can skip the warm stopover entirely. A buy through an on-ramp ends with delivery to whichever wallet address you give at checkout. Banxa has run that plumbing since 2014, with 100-plus payment methods across 100-plus countries where available, and it delivers to the address the buyer names. Hand over the cold wallet's receiving address and the coins arrive at keys that have never seen the internet.

Start with the backup, not the device. The Newport drive is still under the tip.

Frequently Asked Questions

Close enough for most people. A hardware wallet keeps keys on a chip that never goes online and signs transactions internally, which is the whole point. It only stays cold if you set it up fresh yourself and never type the seed phrase into a phone or computer. Do that once and the wallet is not cold any more.

Not in any realistic way, because the keys never touch a network. The attacks that work aim at you instead: fake support staff asking for your seed phrase, tampered devices sold second-hand, or someone finding the written backup at home. Guard the seed and the device mostly looks after itself.

Nothing happens to the coins. They live on the blockchain, not in the device. Buy a replacement, restore from your seed phrase, and carry on. That is why the written backup matters more than the gadget: the seed rebuilds everything on a new device.

No. When an exchange says it uses cold storage, it means the company's keys are offline. You hold an account balance, not keys. FTX customers learned the difference in November 2022. Holding your own keys is self-custody, and it is a different arrangement entirely.

Yes. A purchase through an on-ramp such as Banxa is delivered to the wallet address you give at checkout, where available. Enter the receiving address from your hardware wallet and the coins land there directly, with no exchange account or hot wallet in between.

Generally not. They made sense before hardware wallets existed, but a sheet of paper is a single copy that cannot sign transactions and does not survive water, fire or an enthusiastic tidy-up. A hardware device plus a properly stored seed backup does the same job with fewer ways to fail.

By Dan ClarkeLast updated: 14 July 2026