As many of you may have known, that recently bitcrab lost a significant (to me) amount of assets, and similar events happened once in a while. In wechat group, we discussed a lot of potential solutions (e.g., buy a mac, install Linux in a virtual machine or not, use and change strong passwords regularly). But even as a Linux user, I realize that we need a simple, feasible solution for all platforms including Windows to make bts popular.
Then it comes to me to realize that even telegram is currently more secure than bts wallet; to log in, telegram ask confirmation from a second device, but once your desktop is compromised your balance in bts wallet could return to zero in late midnight.
I think we urgently need some way to secure our bts wallet. At least, we can imply just what telegram, as a non-profit service, do to introduce confirmation from a second device for login and transaction. If a decentralized solution is not yet possible, I think it is fine for me to use a centralized service to do this to secure my wallet (but not google's 2FA since it is not accessible from China) for now.