SciPHRPasskey-only wallets.
Passkeys are replacing seed phrases as the way to hold a crypto wallet. Instead of twenty-four words you can type anywhere, the key lives on your device and is bound to the real app it was made for, so a fake site never gets the chance to ask for it. That removes the most common way wallets get drained.
The risk moves rather than disappearing. A passkey is usually synced and recovered through your Apple or Google account, so that account becomes the thing an attacker has to beat. It closes the phishing path and leans the whole system on whoever can reach your cloud recovery.
The lesson holds: Security is decided by who controls recovery, not by how the key is stored.