Digital Wallet Compromise: JellyC’s Step-by-Step Response Plan 

Written By Sandra Fajardo

At JellyC, security isn’t just a feature — it’s our foundation. As stewards of our clients’ digital assets, we understand that trust is earned not only through performance but also through preparation. 

While our custody systems are designed with industry-leading protections, we’ve also built a comprehensive response plan for the unlikely event of a wallet compromise. Because when something goes wrong, how you respond matters just as much as how you prepare. 

First: Rapid Detection and Immediate Containment 

The moment any irregular activity is detected - whether flagged by our 24/7 automated alerts from Fireblocks, Coinbase, or Zodia Custody - or picked up in our daily audit logs - a clear and rehearsed incident response process is triggered. 

We immediately: 

  • Alert our custodians and escalate to our internal incident response team

  • Freeze access to the affected wallet or workspace 

  • Review all transaction logs and cross-check activity on connected platforms 

  • Notify our cyber insurance provider and legal counsel

This happens within minutes, not hours. Our process is built to move fast - because in digital asset security, speed is everything. 

Then: We Trace, Investigate, and Engage Specialists 

With the help of advanced blockchain forensics tools such as Chainalysis and Elliptic, our Custodians monitor fund movements and flag them throughout the ecosystem. Whether it’s a phishing attack, a smart contract exploit, or unauthorised access, we bring in the right expertise - from Fireblocks’ incident response support to Zodia’s investigations team. In some cases, we also collaborate with external specialists or independent analysts. 

Throughout, we focus on facts: What happened? When? How? And what assets, if any, are at risk? 

Legal, Regulatory, and Insurance Protections are Triggered 

As soon as the scope is clear, we engage all required legal and regulatory bodies, including: 

  • Law enforcement (AFP, ASD) 

  • Regulator (ASIC) 

We also begin formal communication to impacted investors or stakeholders - clear, timely, and transparent. We won’t leave people in the dark. 

We Prioritise Recovery - and Resilience 

If recovery is possible (for instance, if stolen funds are traced and frozen or if the compromise was detected before the assets moved), we pursue every avenue. But just as importantly, we focus on the lessons. 

Every incident - big or small- is documented and reviewed through a structured Post-Incident Review. We ask: 

  • What worked well in our response? 

  • What could have been faster or more effective? 

  • Do we need to update access controls, revalidate key backups, or retrain staff? 

At JellyC, we never waste a crisis. We turn every challenge into a chance to harden our systems and sharpen our approach. 

Our Promise: Prepared, Transparent, and Accountable 

Digital asset management is evolving fast. That’s why we don’t just secure our systems - we secure your confidence in us. Our wallet architecture includes: 

  • Multi-party computation (MPC) with no single points of failure 

  • Real-time AML monitoring and address screening 

  • Tiered access controls with biometric 2FA 

  • Off-exchange storage and policy-enforced withdrawals 

  • Safe custody through regulated partners 

But technology alone isn’t enough. That’s why we test, train, and improve every day. 

Because at JellyC, managing your digital assets isn’t just our business — it’s our responsibility. 

JellyC’s Crypto Wallet Incident Response Plan

Disclaimer

This article ("Article") has been prepared for informational purposes only and does not constitute an offer to sell or a solicitation of an offer to purchase any financial product or service. This Article does not form part of any offer document issued by JellyC Pty Ltd (CAR Number 001293184), a corporate authorised representative of TAF Capital Pty Ltd (ACN 159 557 598, AFSL 425925). Past performance is not necessarily indicative of future results, and no person guarantees the performance of any financial product or service mentioned in this Article, nor the amount or timing of any return from it.

This material has been prepared for wholesale clients, as defined under Sections 761G and 761GA of the Corporations Act 2001 (Cth), and must not be construed as financial advice. Neither this Article nor any offer document issued by JellyC Pty Ltd or TAF Capital Pty Ltd takes into account your investment objectives, financial situation, or specific needs.

The information contained in this Article may not be reproduced, distributed, or disclosed, in whole or in part, without prior written consent from JellyC Pty Ltd. This Article has been prepared by JellyC Pty Ltd, which, along with its related parties, employees, and directors, makes no representation or warranty as to the accuracy or reliability of the information provided and accepts no liability for any reliance placed on it. Prospective investors should obtain and review the relevant offer documents before making any investment decision.

Sandra Fajardo
Previous

What Your Vote Means for the Future of Digital Assets in Australia
Next

Top 10 Crypto Risks Every Investor Must Know (With Proven Solutions)