What Is a Duress PIN —
and Why You Need One

There's a meme in the security community called the "$5 wrench attack." The premise is simple: no matter how strong your encryption, no matter how long your password, a determined person with a physical tool and physical access to you can make you unlock your own device.

It's a joke. But it's also not.

Crypto holders are increasingly targeted for exactly this kind of physical coercion. Home invasions. Street robberies. Threats against family members. The target isn't the device — it's the wallet on the device. And once someone has your phone and your compliance, every layer of digital security you've built becomes irrelevant.

What Encryption Can't Protect

The security industry has spent decades focused on digital threats. Hacking. Phishing. Malware. Man-in-the-middle attacks. These are real, and the defences against them are genuinely impressive.

But they all assume that you control access to your own device. The moment you don't — because someone is physically compelling you to cooperate — digital security fails completely.

You can have the most secure messaging app in the world. If you're forced to unlock it, the person standing over you can read every message.

You can have hardware wallet cold storage. If someone is in your home and they're not leaving until you transfer funds, the cold storage is irrelevant.

This is the threat that almost no consumer app has tried to solve. Until now.

What a Duress PIN Is

A Duress PIN is a second, secret PIN — different from your real one — that unlocks a completely different version of your app.

When you set up a Duress PIN in Sync, you're creating a parallel identity. The Duress PIN shows:

• A set of decoy contacts — either empty or pre-populated with plausible but fake conversations
• A decoy wallet with a small balance that looks real but is not your primary wallet
• Empty or sanitised group chats
• No trace of GhostWire, Kill Switch, or any of your real security settings

To anyone looking at the screen, the app appears completely normal. They see what looks like a real account. They have no way of knowing they're looking at a decoy.

Your real messages, your real contacts, your real wallet — none of it is visible. None of it is accessible. And nothing about the decoy screen reveals that a real screen exists.

How It Works in Practice

You set your real PIN during setup. Then, separately, you configure your Duress PIN. You decide what the decoy looks like — you can seed it with plausible-looking contacts and a small amount of crypto that you're willing to sacrifice if needed.

In a coercive situation, you enter your Duress PIN instead of your real one. The app unlocks. It looks right. The person demanding access sees an app, sees a wallet, sees what appears to be your account.

You've cooperated, technically. But nothing real has been exposed.

"Compliance without consequence. That's what a Duress PIN gives you."

Why This Matters for Crypto Specifically

Most people don't carry significant cash. A mugger who takes your wallet gets your cards, which can be cancelled, and maybe a few hundred in cash.

A crypto user who carries their wallet on their phone might have thousands — or hundreds of thousands — of dollars in an app that can be accessed by anyone who can unlock the device. That's a fundamentally different risk profile, and it requires fundamentally different protection.

The Duress PIN is specifically designed for this reality. It assumes that physical coercion will happen to some of the people reading this. It designs for that scenario rather than hoping it won't occur.

What About the Decoy Wallet?

One of the most powerful aspects of the Duress setup is the decoy wallet. You can fund a small wallet — say, $50–$200 in crypto — that's associated with your Duress identity.

If someone forces you to unlock your phone and demands you send them crypto, you can send from the decoy wallet. You've "complied." The amount is small enough to be a loss you can absorb. Your real holdings are completely untouched.

This isn't encouraging you to put yourself in danger — always prioritise your physical safety above your assets. But it does give you options in a situation where previously you had none.

Setting Up Your Duress PIN

In Sync, the Duress PIN is configured in your security settings. The process takes about two minutes:

• Set a Duress PIN that is clearly different from your real PIN — but plausible enough to not arouse suspicion
• Configure what appears in the decoy view
• Optionally fund a small decoy wallet
• Test it — unlock with the Duress PIN to confirm what the other person would see

Once set, it runs silently in the background. You never think about it — until the moment you need it.

The security tools that protect your crypto need to account for the world as it actually is — not just the digital threats, but the human ones. A Duress PIN doesn't make you invincible. But it gives you a meaningful option in a situation where you'd otherwise have none.