Cryptocurrency contracts are going to touch actual tokens at some point.

Even if the compromise wasn't on the developer's machine, it could have enabled a supply chain attack post-deployment.

There are test networks, and anyone with more than $500 in crypto should be using a hardware wallet at this point.

Most people do.

Most people don't hold 500k in cryptos.

Holding that much money on a machine that is not ultra secure is borderline insane.

If it's less than 1% of your net worth, not that insane.

It's similar to how many crypto businesses will have a hot wallet with some fraction of their more secure cold wallet that they're okay losing.

Thought the same thing, could it be a false claim to get a nice headline thus clicks on your site?