...
For more details see the original Stackexchange post
Advice
This advice covers only a subset of possible attack vectors. For more, see the original Stackexchange post
1. Never turn on RPC on hot wallets. Even with IP and CORS limited to localhost. Just don't.
...