🚨 Ledger Donjon disclosed a critical flaw in Tangem’s Android app, where fake cards could pass as genuine by spoofing public keys and IDs. The issue? Improper attestation checks. (Patched in v5.18.3). @DETERMINISTIC OPTIMISM 🌞 covers the bug, the fix, and its security implications in BR097.

Built by researchers at @Blockstream & Ledger, #DahLIAS enables: • Constant-size sigs • ~2x faster verification • Preprocessing support • Path to cheaper, more private txns @Carman , @DETERMINISTIC OPTIMISM 🌞 & @Paul discuss the potential in BR097.