This is my new npub
Thread
Login to reply
Replies ()
Yikes, how many times has this happened already? π
Once with my personal npub and once with my Coinos npub. Sorry to let you down again.
we really need better key management tools. Nsec bunkers and remote signers are a good start but...
Can you explain how you lost your accounts?
It would be helpful for systems to be improved so that laypeople don't have to go through the same thing.
With the Coinos account I straight up uploaded the nsec to GitHub by accident. With this personal one I'm pretty sure it's because I had it loaded into a Coinos account with a weak password on it that an attacker was able to brute force to decrypt it. We don't store encrypted nsecs anymore since adding support for remote signers so no one else should have this issue, it was just in one of my old accounts.
So you basically didn't get hacked.
More people should get hacked. This is fantastic stuff.
As @david pointed out here, be sure to report the old account to help knock it out of the GrapeRank WoT!
Given Brainstorm as it is currently implemented, if a handful of people use NIP-56 to report this nsec, it will only take a small handful of reports to knock the GrapeRank score down to zero, which will prevent this profile from showing up on profile keyword searches in the future, once we have a few search engines using the GrapeRank metric to filter results. Unfollowing helps too but as a general rule, youβre never going to get enough people to unfollow a compromised nsec. Muting will also reduce the π-Rank score but not as much as reporting.
NIP-56 does not specify a reportType for βcompromisedβ β maybe we should update the nip? For now, reportType βotherβ would work best; or just put βcompromisedβ as the reportType even if itβs nonstandard.
https://nostr-nips.com/nip-56
View quoted note →
If we keep using shoe-on-head verification, itβs just gonna create a massive videos dataset for training Ai and shoe-on-head verification will end up being the easiest kind to fake.
I just realized something else funny about thisβ¦ I have no idea what you look like. So you could just be a total scammer putting a shoe on your ahead and Iβd have no idea π€£π€£
You've interviewed me Guy!!
I have seen the same guy irl with the shoe on his foot, if that helps.
π
β
Verified!
Our latest #nostr solemate π»
Cross-checked with QRZ. π
Welp...
You get hacked a lot. lol
As a developer I test a lot of stuff and do unsafe things that most people won't and shouldn't ever do. I'm also specifically targeted by hackers because of the nature of the service I provide.
Lol. No, you have bad security practices. You should be able to do any "stuff" you want without compromising secrets. Learn to use Qubes OS or get more computers.
My computer wasn't hacked
I feel you. Sorry to hear.
Then what happened, socially engineered?
Just a bit careless with my nsecs online
With the Coinos account I straight up uploaded the nsec to GitHub by accident. With this personal one I'm pretty sure it's because I had it loaded into a Coinos account with a weak password on it that an attacker was able to brute force to decrypt it. We don't store encrypted nsecs anymore since adding support for remote signers so no one else should have this issue, it was just in one of my old accounts.
View quoted note →
This is AI, dont believe it βοΈβοΈβοΈ
It's not
How can u prove its not?
NIP-41
View quoted note β
π«‘
IT WAS SUS UNTIL THE @npub1w27m...z70r SHOE π€
"shoe of shame" π₯
And how do we know this is not an AI video? π
A few people have thought that! I made a follow up video that would be a bit trickier for an AI to generate
Tagged the wrong Adam π«
Thanks for making coinos⦠helped us a lot!
DANCE BATTLE FESTIVAL: P2P ENTERTAINMENT
P2P Entertainment is here... There is no going back.
Hello, care to chat a little?
Deepfake
key rotation mvp
How did that happen?
The Coinos founder was hacked π±
We need hardware signers for NOSTR now @LNbits
View quoted note β
LNbits Shop
Nsec Remote Nostr Signer - LNbits Shop
Secure Key Management for Nostr Protect your private keys while signing Nostr events remotely. The Nsec Remote Signer keeps your keys safely stored...
π₯Ί
Welcome back. π€
The npub doesn't stay on screen for long enough, I'm having a hard time typing it.
npub1nzhym2fxc3cuy073950tm4vrnw5zj9a65cvwrp8qexgkmy7u7nmssuz7rp
You don't expect me to believe that tampered picture, do you? Of course you put your own npub in there or something.
Damn and blast
@Pip the WoT guy how does @Vertex help in these cases?
honestly it's not going to be super helpful. The rank of the old npub will remain higher than the new for some time, but then the new will flip it, so search results and stuff will once again be correct.
It's a very very hard situation to deal with
Could you share how you got hacked? So we can avoid.
With the Coinos account I straight up uploaded the nsec to GitHub by accident. With this personal one I'm pretty sure it's because I had it loaded into a Coinos account with a weak password on it that an attacker was able to brute force to decrypt it. We don't store encrypted nsecs anymore since adding support for remote signers so no one else should have this issue, it was just in one of my old accounts.
View quoted note →
Helpful thanks man. Sorry it happened.
A solution to this would be a "designated survivor npub" NIP.
Immutable. Attached to your current NPUB. If you get hacked, engage designated survivor mode and it functions similar to a 301 redirect to your new NPUB.
Thoughts @npub12262...grkj ?
That sucks. Iβm sorry to hear that. Love Coinos though. Keep up the great work!
Didnβt follow you before, but @PABLOF7z reposted and now I do!
π«π¨
Coinos.io is down, gives me a "connection timed out" error. Please let us know when the website is back on. Thanks