stacked markets
N

Stacked Markets

How to store crypto safely while still being able to trade actively

Published May 31, 2026 · By Stacked Markets Research Team

Contents

  1. The false binary between safe storage and active trading
  2. Cold storage fundamentals in 2026
  3. Hot wallet best practices for active traders
  4. The three-bucket framework
  5. The zero-balance terminal advantage
  6. How much to keep in each bucket: a worked example
  7. Seed phrase and key management
  8. Operational security hygiene
  9. What changes when you use a non-custodial terminal vs a CEX
  10. The one mistake most active traders make
  11. FAQs

Most traders treat storage and trading as two separate problems. They're not. They're the same problem: how do you keep your capital secure without making it unusable when a trade sets up?

The false binary is "cold storage or active trading." The real answer is a structured split across three buckets, each sized for its purpose. This article covers how to build that structure, what belongs in each bucket, and why a non-custodial terminal changes the risk calculus for the margin you put to work.

The 2026 threat environment makes this worth getting right. Crypto scams drained $17 billion in 2025 according to Chainalysis. The Bybit hack in February 2026 saw $1.5 billion exit even with multi-sig cold wallet controls in place. There are now over 850 million active wallets globally as of April 2026. Impersonation scams grew 1,400% year-over-year. The attack surface is larger, the attacks are more sophisticated, and a single mistake is permanent.

The false binary between safe storage and active trading

The assumption most traders carry is that security and speed are in direct conflict. Lock funds in cold storage and you're safe but slow. Keep funds in a hot wallet and you can trade but you're exposed.

That's only true if you treat your entire portfolio as a single pool. Split capital by purpose and it stops being true.

Cold storage doesn't need to be fast. It needs to be secure. Your trading capital needs to be accessible, but it doesn't need to be large. And your margin on a non-custodial perp DEX like Hyperliquid doesn't sit with a counterparty who can freeze it, lose it, or get hacked.

The three-bucket framework resolves the tension structurally rather than asking you to compromise on either end.

Cold storage fundamentals in 2026

Hardware wallets: what's worth using

The Ledger Stax is the current benchmark for hardware wallet usability. Touchscreen interface, Bluetooth for mobile pairing, broad asset support. The security model is standard Ledger: private keys never leave the device, transactions are signed on-device, and the secure element chip handles key storage.

The Trezor Safe 5 is the open-source alternative. Trezor's firmware is fully auditable on GitHub, which matters if you want to verify rather than trust. No Bluetooth - which some traders prefer precisely because it reduces wireless attack surface. Both are solid. The difference comes down to whether you prioritize usability or open auditability.

What cold storage actually means in practice

Cold storage means the signing key never touches an internet-connected device. The wallet generates your seed phrase offline, you write it down offline, and you sign transactions by physically connecting the device and reviewing each one on the hardware screen.

Air-gapped signing takes this further. Some hardware wallets support QR-code-based transaction signing - the unsigned transaction passes to the device via QR code, the signed transaction returns the same way, and the device never connects to anything. Overkill for most traders, but relevant if you're holding significant long-term positions.

The cold wallet is for capital you are not actively trading. It gets touched rarely. When you do move funds out, you sign with the hardware wallet, verify the destination address on the device screen, and you don't rush.

Hot wallet best practices for active traders

Separate wallets for separate purposes

One of the most common operational mistakes is using the same wallet for everything: DeFi, NFTs, active trading, long-term holds. A single compromised approval drains the whole thing.

Keep a dedicated trading wallet that has never been used for NFT mints, DeFi protocol approvals, or anything else with a long approval history. MetaMask is the standard choice for EVM-compatible chains. That wallet should hold only what you need for current positions and near-term trading activity.

Transaction simulation

Before signing any transaction, simulate it. Rabby Wallet has built-in simulation that shows you what will change in your wallet before you approve. MetaMask's latest versions include simulation for some transaction types. If you can't see clearly what a transaction does before signing, don't sign it.

Address poisoning and AI-driven phishing in 2026

Address poisoning attacks send small transactions from a wallet address that visually resembles one you've used before. When you copy-paste from your transaction history, you copy the attacker's address. Always verify the full address - not just the first and last four characters.

AI-driven phishing is a material threat in 2026. The KuCoin April 2026 incident involved social engineering using AI-generated voice and video impersonation to bypass internal controls. For individual traders, this shows up as hyper-personalized phishing emails, fake support channels, and cloned interfaces. The defense hasn't changed: verify on-chain, sign on hardware, never enter your seed phrase anywhere.

The three-bucket framework

Bucket one: cold vault

70 to 80 percent of your total portfolio. Hardware wallet, seed phrase stored offline, touched rarely. The only time you move funds from here is to rebalance into the trading wallet or take a long-term position that requires on-chain interaction.

This bucket is not for trading. Not for yield farming. Not connected to any dApp.

Bucket two: hot trading wallet

The capital you're actively working with. It should hold only what you need for current and near-term positions - a reasonable target is 10 to 20 percent of your total portfolio, sized to actual position requirements.

This wallet connects to DEX interfaces, bridges, and trading terminals. It has a shorter approval history than your main wallet. You revoke approvals regularly. You monitor it with on-chain alert tools.

Bucket three: Hyperliquid margin account

USDC bridged into Hyperliquid for active perpetual futures positions. Separate from your hot wallet balance. When you close positions and withdraw, the USDC returns to your hot wallet, and you decide whether to move it to cold storage or keep it available for the next trade.

The key point: the margin sits on Hyperliquid's on-chain protocol, not with a front-end interface. When you trade through Stacked Markets, the terminal routes your orders to Hyperliquid's on-chain CLOB. Stacked Markets holds zero balances and zero signing keys. Your margin is on the protocol, not with the interface provider.

The zero-balance terminal advantage

This is where non-custodial architecture changes the risk model for active traders.

On a centralized exchange, depositing funds for perp trading means your capital is now with the exchange. They hold it. If they get hacked, freeze withdrawals, or collapse, you're in the queue with everyone else. The Bybit $1.5 billion hack in February 2026 is the most recent proof that this risk is real even for major platforms.

With Stacked Markets, the custody chain is different. You connect your Ethereum wallet. You bridge USDC from Arbitrum into Hyperliquid margin using the in-product deposit flow. You sign each order individually with your wallet. Stacked Markets never holds your funds at any point in that process.

The terminal is an interface. Hyperliquid is the protocol. You keep the custody.

Your hot wallet doesn't become a custody risk just because you're actively trading perps. The funds allocated to margin are on Hyperliquid's protocol, verifiable on-chain. Everything else stays in your hot wallet or cold vault.

How much to keep in each bucket: a worked example

Assume a $50,000 active trader portfolio.

  • Cold vault (75%): $37,500 on hardware wallet. Long-term BTC, ETH, and any other core positions. Not touched for trading.
  • Hot trading wallet (15%): $7,500 in the dedicated trading wallet. Available for bridging into margin, spot trades, or short-term DeFi positions. Revoke approvals weekly.
  • Hyperliquid margin (10%): $5,000 bridged into Hyperliquid for active perp positions. Working capital for leveraged trades. When positions close, the USDC returns to the hot wallet.

These percentages are a starting point, not a rule. Running a high-frequency strategy, you might push the margin bucket to 20 percent. Trading less actively, 5 percent is enough. The principle is sizing each bucket to its actual purpose, not to what feels comfortable.

Seed phrase and key management

Your seed phrase is the master key. If someone gets it, they have everything. There is no recovery process.

The standard advice still holds in 2026: write it on paper or engrave it on metal, store it across multiple physical locations, never photograph it, never type it into any device, never store it in a password manager or cloud storage.

Metal backup plates - Cryptosteel, Bilodeau, and similar - are worth using for any wallet holding meaningful capital. Paper degrades. Metal doesn't.

Passphrase hardening adds a 25th word to your seed phrase that isn't stored with the seed. Even if someone finds the seed, they can't access the wallet without the passphrase. A meaningful additional layer for cold vault wallets.

One seed phrase per wallet type. Don't reuse seed phrases across hardware and software wallets.

Operational security hygiene

Dedicated trading environment

Use a dedicated browser profile or device for trading activity. Minimal extensions on the trading browser - extensions have broad permissions and are a common attack vector. A compromised extension can read your clipboard, intercept signing requests, and modify what you see in the browser.

For large transactions, sign with the hardware wallet. Don't approve significant amounts from a software wallet alone.

Address allow-listing

Where protocols support it, configure allow-listing so withdrawals can only go to pre-approved addresses. It doesn't prevent every attack vector, but it limits the damage if a session is compromised.

Testnet before mainnet

Before running a new workflow on mainnet, test it on testnet. Stacked Markets has a testnet mode with clear network badges so you can run the full terminal experience without mainnet risk. New order types, new deposit flows, any workflow you haven't run before - test it first.

What changes when you use a non-custodial terminal vs a CEX

On a CEX, the custody chain is straightforward: your funds leave your wallet, they sit on the exchange's infrastructure, you trade IOUs, and you withdraw if and when the exchange allows it.

On a non-custodial terminal routing through Hyperliquid, every step is different. You bridge USDC directly to Hyperliquid's protocol. Your margin is on-chain. Orders are signed by your wallet and matched on Hyperliquid's on-chain CLOB. Settlement is on-chain. Stacked Markets is the interface layer only.

The practical difference: if Stacked Markets went offline tomorrow, your margin would still be on Hyperliquid. You could access it through any other Hyperliquid front-end. The interface and the protocol are separate. That's not true of a CEX.

The one mistake most active traders make

Treating the hot wallet as long-term storage.

It happens gradually. You bridge some USDC for a trade. The trade closes. You leave the USDC in the hot wallet because you might trade again soon. A few months later, the hot wallet holds 60 percent of your portfolio and has dozens of active approvals from various DeFi interactions.

The hot wallet is a working account, not a savings account. Move capital back to cold storage when you're not actively trading it. Revoke approvals you no longer need. Keep the hot wallet lean.

The three-bucket framework only works if you maintain the discipline to actually use it. The cold vault has to stay cold. The hot wallet has to stay small. The margin account has to be sized to active positions, not to what you might want to trade someday.

Start on testnet and run through the full workflow before committing mainnet capital.

stackedmarkets.com

FAQs

Can I trade perpetual futures without ever moving funds to a hot wallet?

Not practically. You need a connected wallet to sign transactions and bridge margin to Hyperliquid. The goal isn't to eliminate the hot wallet - it's to keep it small and purpose-specific. Only the funds you need for current trading activity should be in it.

Does Stacked Markets hold my funds at any point?

No. Stacked Markets is a front-end interface. It holds zero balances and zero signing keys. Your margin sits on Hyperliquid's on-chain protocol. You can verify this on-chain at any time.

What's the difference between a hardware wallet and cold storage?

A hardware wallet is the device. Cold storage is the practice. Cold storage means the signing key never touches an internet-connected device. You can own a hardware wallet and still not use it as cold storage if you're connecting it to dApps regularly. True cold storage means the device is only connected when you need to sign a specific, pre-verified transaction.

How often should I revoke wallet approvals?

At minimum, review and revoke unnecessary approvals monthly. After any significant DeFi interaction, check what you've approved. Tools like Revoke.cash let you see all active approvals for an address and revoke them in one place.

What happened in the Bybit hack and what does it mean for my setup?

In February 2026, attackers compromised Bybit's multi-sig cold wallet infrastructure and moved approximately $1.5 billion. The attack targeted the signing interface, not the keys directly. The lesson: even cold wallet setups can be compromised if the signing process is manipulated. Verify every transaction on the hardware device screen, not just in the browser.

Is it safe to use the optional agent wallet in Stacked Markets?

The agent wallet uses a local browser-based signing key that never reaches Stacked Markets servers. It speeds up order approvals without changing the custody model - your funds remain on Hyperliquid's protocol regardless. The tradeoff is that the signing key lives in your browser, which carries a different risk profile than a hardware wallet. Use it for active trading sessions, not as a long-term key store.

How do I practice the Stacked Markets terminal without mainnet risk?

Stacked Markets has a testnet mode with clear network badges. You can run the full terminal workflow - order entry, position management, deposit flows - without using real funds. Run any new workflow on testnet before executing it on mainnet.

Follow us
@stackedmarkets

Resources

All trading involves risk.

Perpetual futures use leverage. You can lose all collateral. Stackedmarkets does not custody funds or hold your main wallet keys. We do not provide investment advice. Nothing here is an offer to buy or sell. Trade only with capital you can afford to lose. Always verify testnet vs mainnet in the product chrome.

Stacked Markets is a decentralized perpetual futures trading platform. All trading activities are conducted on-chain and are subject to blockchain network conditions and smart contract risks.

Trading perpetual futures involves substantial risk of loss and is not suitable for all investors. Past performance is not indicative of future results. The high degree of leverage can work against you as well as for you. Before deciding to trade, you should carefully consider your investment objectives, level of experience, and risk appetite.

The information provided on this platform does not constitute investment advice, financial advice, trading advice, or any other sort of advice, and you should not treat any of the platform's content as such.

stacked markets

© 2026 Stacked Markets. All rights reserved.