Hot Wallet
Updated Apr 13, 2026
A hot wallet is a cryptocurrency wallet that stays connected to the internet. It stores your private keys on an internet-connected device — a phone, browser, or computer and uses that connection to send and receive crypto in real time.
The term "hot" refers to that live internet connection. The opposite is a cold wallet (or cold storage), which keeps private keys offline and away from any network. Hot wallets, also called online wallets or software wallets, are accessible via the internet. Most people use one without realizing it; MetaMask, Trust Wallet, Coinbase Wallet, and exchange accounts all fall into this category.
How a Hot Wallet Works
Every crypto wallet, hot or cold, is a place to store private keys. Your private key is what proves you own your funds and authorizes transactions. The wallet itself doesn't hold coins; the coins live on the blockchain. The wallet holds the key that controls them.
In a hot wallet, that key resides on a device connected to the internet. When you want to send crypto, the wallet:
- Constructs the transaction (amount, recipient, network fee)
- Signs it with your private key
- Broadcasts it to the blockchain via an internet connection
Because everything happens on a connected device, the whole process takes seconds. That speed and convenience are the core appeal of hot wallets.
The tradeoff is exposure. Attackers who compromise an internet-connected device through malware, phishing, or a software vulnerability can access any private key stored on it.
Types of Hot Wallets
Web Wallets
Accessed through a browser, no download needed. Some are custodial (the provider holds your keys), and some are non-custodial (you hold your keys but access them through a web interface). Examples of web wallets include Coinbase Wallet (web) and MyEtherWallet.
Browser Extension Wallets
Small browser-based apps that connect directly to decentralized applications (dApps), making them the dominant wallet type for DeFi and NFTs. The private key is encrypted and stored locally in your browser. Examples: MetaMask, Phantom, Rabby.
Mobile Wallets
Apps on your phone. Keys are stored in the app's sandboxed storage, sometimes backed by the phone's secure enclave. Convenient for everyday use and payments. Examples: Trust Wallet, Exodus, Coinbase Wallet (mobile).
Desktop Wallets
Applications installed on your computer. Your computer stores keys in an encrypted file on your hard drive. More secure than web wallets if your machine is clean, but still connected to the internet during use. Examples: Electrum, Exodus (desktop).
Hot Wallet vs Cold Wallet
| Factors | Hot Wallet | Cold Wallet |
|---|---|---|
| Internet connection | Always connected | Offline by default |
| Private key storage | On an internet-connected device | On an air-gapped device |
| Security level | Lower (exposed to online threats) | Higher (physically isolated) |
| Best for | Daily use, DeFi, active trading | Long-term storage, large amounts |
| Transaction speed | Instant | Requires physical interaction |
| Setup complexity | Low (10-20 minutes) | Moderate - hardware required |
| Examples | MetaMask, Trust Wallet, Phantom | Tangem, Trezor, Ledger |
| Cost | Usually free | $50-$200+ |
The right choice depends on how you use crypto. Many people use both: a hot wallet for everyday activity and a cold wallet for savings they don't touch often.
When to Use a Hot Wallet
Hot wallets make sense when:
- You're actively trading. If you're frequently moving in and out of positions, you need fast access. A hot wallet connected to an exchange or DEX is practical.
- You're using DeFi. Protocols like Uniswap, Aave, and Compound require a wallet that can sign transactions directly with dApps. Browser extension wallets like MetaMask were built for exactly this.
- You're transacting regularly. Paying for something in crypto, sending funds to a friend, or receiving small payments - hot wallets handle it smoothly.
- The amounts are small. Think of a hot wallet like a physical wallet in your pocket. You'd carry enough cash for daily spending, not your life savings.
Where hot wallets are a poor fit: storing large amounts of crypto long-term, holding assets you don't plan to touch, or securing funds you can't afford to lose to a hack.
Hot Wallet Risks and How to Reduce Them
Phishing Attacks
Someone tricks you into visiting a fake website or approving a malicious transaction. You connect your wallet, sign what appears to be a routine interaction, and hand over access to your funds.
How to Reduce it: Always check URLs before connecting your wallet. Never click links from DMs or emails. Use a wallet with transaction simulation (shows what a transaction will actually do before you approve it).
Malware and Keyloggers
Malicious software on your device watches what you type or accesses files in memory, including your seed phrase or private key if you store them in plaintext.
How to Reduce Malware Risks: Keep your device clean. Don't download cracked software. Store your seed phrase only on paper, never in a notes app, a screenshot, or the cloud.
Seed Phrase Exposure
The seed phrase (12 or 24 words) is a master key to your wallet. Anyone who gets it can import your wallet and drain it instantly, from anywhere in the world.
How to Reduce Seed Phrase Exposure Risk: Write it down on paper the moment you set up a wallet. Store it somewhere physically secure. Never photograph it, type it into any website, or share it with anyone, ever.
Exchange and App Hacks
Custodial hot wallets (exchange accounts) depend entirely on the platform's security. If the exchange gets hacked, your funds can disappear.
How to Minimize Exchange Risks: Use non-custodial wallets that let you control your keys. Move funds off exchanges if you're not actively trading.
Malicious Smart Contract Approvals
In DeFi, approving a contract interaction can grant it unlimited access to specific tokens in your wallet. Some contracts are designed to exploit this.
How to Reduce Malicious Smart Contract Risk: Use a tool like Revoke.cash to audit and revoke token approvals regularly. Only interact with contracts from verified, audited protocols.
Common Misconceptions
- "My hot wallet is safe because I use a strong password." Your password protects access to the app; it doesn't protect the private key from malware or phishing.
- "I'm fine because I use a reputable wallet like MetaMask." The wallet software isn't the vulnerability. Your device, your habits, and the sites you connect to are.
- "If I don't store much crypto in it, it doesn't matter." Even small amounts attract automated draining bots. More importantly, compromising one wallet can expose information about others.
How Tangem Approaches This
Tangem occupies a different position in the hot/cold spectrum. Unlike typical hot wallets, Tangem stores private keys inside a physical card's secure chip - the key is generated on the card and never leaves it.
This means even when you're transacting (which requires some form of connectivity), your private key isn't sitting on an internet-connected device where it could be extracted. The signing occurs within the card's hardware, and the card must be physically present.
The result is a wallet that behaves like a hot wallet, allowing you to transact quickly from your phone, but without the core hot wallet vulnerability of exposing the private key. It's a practical answer to the tradeoff most people encounter: convenience versus security. With Tangem, you don't have to choose between keeping your keys on a phone you use every day or locking them away in a hardware wallet you rarely touch.
Frequently Asked Questions About Hot Wallet
Is a hot wallet safe to use?
Hot wallets are reasonably safe for everyday use and small amounts, as long as you protect your seed phrase, avoid phishing sites, and keep your device clean. They're not suitable for large amounts or long-term storage - for that, cold storage is the right tool.
Can you lose crypto in a hot wallet?
Yes, in several ways. Malware can compromise your device. Attackers can phish you into approving a malicious transaction. You can lose access if you lose your seed phrase and the device breaks. You can also lose funds if you use a custodial hot wallet (like an exchange) and the platform is hacked or goes under.
What's the difference between a hot wallet and an exchange wallet?
An exchange wallet is a type of hot wallet, but with an important difference: the exchange holds your private keys, not you. With a self-custody hot wallet like MetaMask, you hold your own keys. "Not your keys, not your coins" refers to this distinction.
Do I need a hot wallet for DeFi?
Yes, in most cases. DeFi protocols require a wallet that can sign transactions and connect directly to dApps. Browser extension wallets are the most common way to do this. Some hardware wallets can connect to DeFi through browser extensions, but the user experience is more involved.
What happens if I lose my hot wallet device?
If you have your seed phrase, you can restore the wallet on a new device instantly. If you don't have your seed phrase and the device is gone, your funds are unrecoverable. Backing up your seed phrase should be the first and most important step when setting up any wallet.
Is MetaMask a hot wallet?
Yes. MetaMask is a browser extension wallet that stores your private keys locally, encrypted on your device. It's one of the most widely used hot wallets, particularly for Ethereum and EVM-compatible networks.
How much crypto should I keep in a hot wallet?
Only what you're actively using. A common approach: keep a small working balance in a hot wallet for transactions and DeFi, and store the rest in cold storage. Think of it like carrying cash - enough for daily needs, not your savings.