What to do the moment you realise you are locked out

First: your funds are almost certainly still there

The most important thing to understand in the first moment of panic is that losing access to a wallet is not the same as losing the funds. Unless someone else actively transferred them away, your cryptocurrency is still sitting on the blockchain, associated with a private key that still exists somewhere. The barrier is access, not existence.

This matters because it changes the nature of the problem. You are not trying to recover something that has been destroyed; you are trying to reconstruct or recover a credential that still exists in some form: in an encrypted file, in a hardware device, in a written backup you may have forgotten about, or in your own memory. That is a more tractable problem, though not always an easy one.

Take a breath before doing anything. A decision made in the next five minutes is unlikely to help and may make things significantly worse.

Stop: do not make things worse

The first and most important instruction is to stop and think before acting. A number of common reactions to discovering a lockout actively reduce the chances of recovery.

Do not guess your PIN repeatedly on a hardware wallet

Hardware wallets are designed to protect against exactly the brute force attack a thief might try. Ledger devices reset and wipe themselves after three incorrect PIN attempts. Trezor devices double the wait time between each incorrect attempt, eventually requiring a factory reset. Both can be recovered from a seed phrase backup if you have one, but if you also no longer have your seed phrase, additional wrong PIN attempts eliminate the easiest path to recovery.

If you are not confident you know the PIN, stop entering guesses. The penalty for repeated wrong attempts is severe and immediate.

Do not run recovery tools from unknown sources

Searching for "wallet recovery tool" produces a mix of legitimate open source utilities and malware disguised as recovery tools. A program that asks you to input your seed phrase, private key, or wallet file password should be treated with extreme suspicion unless you can verify its source, its reputation, and its code. Many such tools are data harvesters: they collect your credentials and use them to drain your wallet rather than recover it.

Stick to tools published directly by the wallet software developer or by well known, long-established open source projects with verifiable code repositories.

Do not share your situation publicly before you understand it fully

Posting about a lockout on social media or public forums, including details like the wallet type, approximate balance, or what you have tried, attracts scammers who monitor these platforms specifically to find vulnerable targets. Before you understand your situation and have a plan, keep the details private.

Document everything you remember, immediately

Memory degrades. The password you half-remember today may be harder to reconstruct next week. Before doing anything else, write down everything you recall about the credential you have lost:

• For a password: approximate length; character types you typically used; any words, names, dates, or patterns you associate with it; whether it followed any formula you used for other passwords at the time; what device or platform you set it on and when.
• For a seed phrase: which words you are confident of and in which positions; any words you think might be correct but are unsure of; the medium on which you wrote it down; whether it was ever stored digitally and where.
• For a hardware wallet PIN: typical PIN patterns you used at the time; whether you wrote it anywhere; any PINs you used on other devices in the same period.

Write this down now, on paper, before attempting anything. Even fragments that seem useless are potentially significant. Each additional piece of accurate constraint reduces the technical search space for a recovery attempt.

Locate and back up your wallet file before doing anything else

If you use desktop wallet software, your wallet file is the encrypted container for your private key. Back it up to at least two separate locations before attempting any recovery action. If you attempt something that corrupts the file, you want an intact copy.

Common wallet file locations:

• Bitcoin Core: the wallet.dat file lives at %APPDATA%\Bitcoin\ on Windows, or ~/.bitcoin/ on Linux and macOS.
• Electrum: wallet files are in %APPDATA%\Electrum\wallets on Windows, or ~/.electrum/wallets/ on Linux and macOS.
• Other software wallets: check the wallet's documentation for its default data directory. Most store files in the application data folder for your operating system.

Copy the wallet file to an encrypted external drive and to a second location before proceeding. The wallet file itself contains no funds and reveals nothing without the password, so storing it in multiple locations adds redundancy without introducing additional security risk.

Search systematically for your seed phrase backup

The vast majority of lockout cases where a seed phrase exists are recoverable if the backup can be located. The difficulty is that people store seed phrase backups in places they considered secure at the time and then forget about, or stored them digitally without recognising the security implications.

Search thoroughly and methodically:

• Physical locations: fireproof boxes, safes, filing cabinets, desk drawers, inside books, taped to the back of furniture, in storage boxes, at a second address.
• Digital locations: password managers, notes apps (check deleted notes), email to yourself, photos taken of the paper, encrypted files, cloud storage including old accounts you may no longer actively use.
• Old devices: a phone or computer from the period when you set up the wallet may have the phrase stored in a notes app, screenshot, or email draft.

Do not assume the backup does not exist until you have looked everywhere. Many successful recoveries begin with the client finding a backup they had forgotten.

Check other credential sources

If the barrier is a forgotten password rather than a missing seed phrase, check every plausible place a password might have been stored:

• Password managers: both current and any you used at the time the wallet was created.
• Browser saved passwords.
• Notes apps and their deleted items folders.
• Emails to yourself or notes created around the time you set up the wallet.
• Any other digital record from that period.

Also consider whether you used a formula for passwords at the time that you have since forgotten: a base word plus a number, a pattern based on a specific site name, or a phrase that had personal significance in that period of your life.

Try what you know safely

Once you have backed up your wallet file and documented your recollections, it is reasonable to try passwords you believe are most likely correct. Attempt them against a copy of the wallet file, not the original, and work through your most confident candidates methodically.

For seed phrases where you have all the words but are uncertain about the order, there are legitimate open source tools that verify seed phrase combinations against the blockchain checksum. Use these only with tools you have independently verified and only after understanding how they work.

Do not attempt more than a handful of guesses on a hardware wallet without understanding the lockout consequences for your specific device model.

Evaluate whether professional help is warranted

After working through the steps above, you are in a position to make a more informed decision about whether a professional recovery service is worth engaging. The relevant questions are:

• Do you have partial but incomplete information (some remembered password fragments, most but not all seed words)?
• Is the amount at stake significant enough to justify the cost of a professional assessment?
• Have you exhausted the accessible copies and backups without finding a usable credential?

If yes to all three, a professional assessment makes sense. If you have no usable information at all and no surviving partial credential, the chances of recovery are low and an honest professional will tell you so upfront rather than charge you for a hopeless attempt.

Before engaging any recovery service, read the scam identification guide. The recovery space has a high proportion of fraudulent operators, and the cost of engaging the wrong one is not just wasted money: it may involve sharing information that makes your situation worse.

How to approach a legitimate recovery firm

When submitting a triage request to a professional service:

• Describe the wallet type, the nature of the access problem, and what information you retain. More detail produces a better assessment.
• Do not share your seed phrase or private key in any initial submission. A legitimate service will not ask for these at this stage.
• Expect an honest response about feasibility before any fee is requested. If a firm quotes fees before understanding your case, be cautious.
• The assessment fee, when one is charged, should be clearly explained in terms of what work it covers and what output you receive.