What is a Bitcoin wallet?

A Bitcoin wallet is software or a physical device that stores the Private Keys required to authorize BTC transactions. The wallet doesn't hold Bitcoin itself—coins are recorded on the blockchain, and the Private Key is what proves ownership of a given address. Bitcoin wallets range from free phone apps to dedicated hardware devices, and they differ in how keys are stored, which address formats they support, and whether the holder or a third party controls access.

Disclaimer: This guide is for educational purposes only. It is not financial advice, not a solicitation, and not for UK audiences. Bitcoin wallets and cryptocurrency storage carry risks and are not suitable for all users.

Software Bitcoin wallets vs hardware Bitcoin wallets

A fundamental distinction between different types of Bitcoin wallets is whether the Private Key sits on an internet-connected device or an offline one. Each model optimizes for a different priority.

Software wallets, aka hot wallets

A software wallet runs on a phone, desktop computer, or browser extension—any device with an internet connection. Transactions can be signed and broadcast immediately, which makes software wallets practical for frequent sends, swaps, or interaction with blockchain applications.

The exposure trade-off is direct. Any device connected to the internet is reachable by malware, phishing kits, and remote exploits. The FBI's 2025 Internet Crime Report, released April 7, 2026, recorded $11.4 billion in cryptocurrency-related fraud losses across 181,565 complaints in the US—a 22% increase over 2024. Phishing remained the most frequently reported attack vector, cited in 191,561 complaints across all cybercrime categories.

Software wallets aren't inherently unsafe. The Private Key is only as secure as the device it lives on, which means software wallet security depends on device hygiene: operating system updates, app source verification, and avoiding untrusted links.

Software wallets can be split into two subcategories:

Mobile wallets are phone apps—the most common starting point for first-time holders. BTC can be received by sharing a QR code and sent in a few taps. Most support biometric authentication and PIN locks as device-level protection layers.

Desktop and browser extension wallets run on a computer and typically offer more granular controls: custom fee settings, coin control (selecting which UTXOs to include in a transaction), and direct connectivity to blockchain applications. Some self-custodial software wallets, like MetaMask, offer both a mobile app and desktop extension.

Hardware wallet, aka cold wallets

A hardware wallet keeps Private Keys on a dedicated device that stays offline during normal use. Direct connection hardware wallets connect briefly to a computer or phone via USB to sign transactions. Airgapped hardware wallets eliminate even that temporary link—relying instead on QR codes or microSD cards to pass transaction data between the signing device and an internet-connected device. This airgapped model makes hardware wallets resistant to the remote attack vectors that affect software wallets. Malware on a paired computer can see the transaction request, but it can't extract the signing key from the hardware device. Hardware wallets from manufacturers like Ledger and Trezor typically cost between $50 and $250 and require physical confirmation of each transaction on the device screen before signing.

Paper wallets—printed or handwritten Private Keys—were an early form of cold storage but have largely been replaced by hardware devices. Paper is vulnerable to fire, water, ink degradation, and insecure generation methods, and it lacks the structured signing workflow that hardware wallets provide.

How to choose between different Bitcoin wallet types

The choice isn't binary for most holders. A common pattern is keeping a smaller balance in a software wallet for routine transactions and moving larger holdings into cold storage. This limits the amount exposed if the software wallet's device is compromised, while keeping day-to-day funds accessible. Many software wallets, such as MetaMask, offer integrations with hardware wallets, to combine the benefits of both types.

Custodial vs self-custodial Bitcoin wallets

The second essential factor when comparing different Bitcoin wallet types is who controls the Private Keys.

Custodial wallets

A custodial wallet is managed by a third party—typically a centralized exchange. The platform generates and stores the Private Keys. The account holder interacts with a balance display and withdrawal interface, not directly with the Bitcoin network.

Custodial wallets reduce key management burden. Forgotten passwords can be reset through the platform's recovery flow. But the trade-off is counterparty risk: the platform controls the funds. If the custodian is hacked, becomes insolvent, or freezes withdrawals, access to the BTC may be delayed or permanently lost. The FTX bankruptcy in November 2022 demonstrated this risk at scale—customer funds were inaccessible for months, and recovery proceedings are still ongoing as of 2026.

Custodial platforms also typically require KYC (know your customer) identity verification, may impose geographic withdrawal restrictions, and report transaction data to tax authorities.

Self-custodial wallets

A self-custodial wallet gives the holder direct control of the Private Keys. No third party can freeze funds, block transactions, or access the wallet contents. This is the custody model Bitcoin was designed around—direct, permissionless ownership.

The responsibility is proportional to the control. Lose the Secret Recovery Phrase—the 12- or 24-word backup that can regenerate all Private Keys in the wallet—and no company, support team, or legal process can recover the funds. The phrase is the sole point of recovery, and protecting it is entirely the holder's responsibility.

Self-custodial wallets span both hot and cold storage. A phone app can be self-custodial. So can a hardware device. The distinction isn't about device type—it's about who holds the Private Key.

For a full explanation of how Bitcoin's network processes transactions and tracks ownership through the UTXO model, see how Bitcoin works.

Bitcoin address formats

Not all Bitcoin addresses are the same, and the format affects both network fees and compatibility with other wallets and exchanges.

Legacy (P2PKH) addresses start with "1." This is Bitcoin's original address format—universally compatible but producing the largest transactions by data weight, which means higher network fees.

Wrapped SegWit (P2SH-P2WPKH) addresses start with "3." Introduced with the Segregated Witness upgrade in August 2017, this format separates signature data from transaction data, reducing transaction weight and lowering fees compared to legacy addresses.

Native SegWit (bech32) addresses start with "bc1q." These produce the lowest standard fees of any widely supported format and are the default on most modern wallets. MetaMask generates native SegWit addresses by default when a Bitcoin account is created through its multichain account structure, using the BIP-84 derivation path.

Taproot (P2TR) addresses start with "bc1p." Activated in November 2021, Taproot improves privacy by making complex transactions—such as multisig setups—indistinguishable from simple single-signature sends on the blockchain. It also enables more efficient scripting for advanced use cases.

When evaluating a wallet, the address format it defaults to is a direct determinant of ongoing fee costs. Native SegWit is the current standard for the best balance of low fees and broad exchange compatibility.

How to back up a Bitcoin wallet

Every self-custodial Bitcoin wallet generates a Secret Recovery Phrase at setup—12 or 24 words, conforming to the BIP-39 standard. This phrase is the master key. It can regenerate every Private Key and address the wallet will ever create, across any compatible software or hardware that supports the same derivation standard.

This means wallet recovery isn't tied to a specific device or manufacturer. A Secret Recovery Phrase generated on one hardware wallet can restore the same addresses on a different manufacturer's device, as long as both follow BIP-39 and the same derivation path (BIP-44 for legacy, BIP-84 for native SegWit).

Storing the phrase securely is the single most important step in Bitcoin self-custody. The phrase should be:

• Written on physical media, never stored in a notes app, cloud service, screenshot, or email

• Kept in a secure location separate from the wallet device

• Never shared with anyone, ever—no legitimate service will ever ask for it

• Optionally backed up on a metal plate (stamped or engraved) for resistance to fire and water damage

Some hardware wallets offer additional backup mechanisms: encrypted microSD card exports or Shamir Secret Sharing (splitting the phrase into multiple parts, where a configurable subset—such as any 3 of 5—can reconstruct the original). These add resilience against single-point-of-failure scenarios like a house fire or theft.

Bitcoin wallet security mistakes to avoid

Storing the Secret Recovery Phrase digitally: Screenshots, cloud notes, password managers, and email drafts are all reachable by malware or cloud breaches. Physical-only storage reduces the digital attack surface substantially, but does not eliminate it entirely.

Sending to an unverified address: Bitcoin transactions are irreversible. Address poisoning attacks—where an attacker generates an address visually similar to a recently used one—have become a notable scam. Recent reports, like MetaMask’s February 2025 Crypto Security Report, have identified large volumes of such attempts.

Always verify the full address character by character, not just the first and last few digits.

Downloading wallet software from unofficial sources: Fraudulent wallet apps regularly appear in mobile app stores, mimicking legitimate wallet branding. Verify the developer name, review count, and publication date before installing. Only download from the official website or the verified publisher listing.

Using one wallet for all purposes: Separating daily-transaction funds (hot wallet) from long-term holdings (cold storage) limits the exposure if the hot wallet's device is compromised. This is a risk-compartmentalization pattern, not a requirement—but it reduces the maximum amount at stake from any single security failure.

Signing unknown transaction requests:T

\oken approvals and signing prompts should be reviewed before confirmation. MetaMask Extension displays the full scope of any signing request—including the contract address and whether an approval is limited or unlimited—before the transaction is signed.

For a full explanation of mining, halving, Proof of Work, and Bitcoin's UTXO transaction model, see how Bitcoin works. To buy BTC directly in a self-custodial wallet, see how to buy Bitcoin.