Nostr notes by zk

Nostr event nevent1qqs2xustafawtnmt988ggyaf7ycmjuecxym8s342k4m2gals6zkf0fczyr0vur09mfhwcykaygukgupxgypj7vwq0dkttn7g2yv9an73w2pu6gdfkv3

2026-05-04T16:29:09Z

https://thehackernews.com/2026/04/new-linux-copy-fail-vulnerability.html

Nostr event nevent1qqsqfdc5y8k8ynd4yqknfeete7vwx3zz62fut08z9436slz0az22aqgzyr0vur09mfhwcykaygukgupxgypj7vwq0dkttn7g2yv9an73w2pu650555y

2026-05-04T16:28:28Z

https://thehackernews.com/2026/04/new-python-backdoor-uses-tunneling.html

Was wondering when this will happen, good timing, so much going ...

2026-04-08T21:11:56Z

Was wondering when this will happen, good timing, so much going on, nobody will pay attention...

quoting
nevent1q…fqua

📰 "NYT Names Adam Back as Satoshi Nakamoto" by Oslo

You think you know Bitcoin's story. Then the New York Times drops a year-long investigation claiming the most elusive figure in modern finance has been hiding in plain sight...

Read: https://nostrmag.com/articleland/w15bitcoin01

Nostr event nevent1qqszmk5ggzwg3qx77lehszrf24832eq4x3832punf65p7pyqg53wcygzyr0vur09mfhwcykaygukgupxgypj7vwq0dkttn7g2yv9an73w2pu6uwy35n

2026-03-28T07:18:29Z

https://www.ox.security/blog/telnyx-malware-teampcp-strikes-again-following-litellm-compromise/

Balanced, I am enjoying the articles of this magazine, better ...

2026-03-18T17:37:02Z

Balanced, I am enjoying the articles of this magazine, better than expected 👍

quoting
nevent1q…pe5n

📰 "BTC Weekly Technical Analysis - Nostriches Only" by Rhodes

This week is not just another candle on the chart, it is a perfect storm of liquidity events and technical crosscurrents that could define Bitcoin’s trajectory for the next quarter...

Read: https://nostrmag.com/articleland/w12bitcoin02

👀 #nevent1q…gyf5

2026-03-04T09:25:05Z

👀

quoting
nevent1q…gyf5

📰 "Nostr Maximalists Split on Proof of Work War" by NM team

The developers behind the decentralized protocol are at each other s throats. One side says you need to burn CPU cycles to speak. The other says you need to burn cash. The result is a philosophical firestorm that is exposing the raw nerves of internet freedom.

Read: https://nostrmag.com/articleland/w10nostr01

👀 Cake Wallet has announced the integration of Bitcoin’s ...

2026-03-02T20:34:26Z

👀 Cake Wallet has announced the integration of Bitcoin’s Lightning Network into its advanced privacy wallet.

👀 #nevent1q…cd58

2026-02-27T05:36:30Z

👀

quoting
nevent1q…cd58
Cybersecurity researchers have disclosed multiple security vulnerabilities in Anthropic's Claude Code, an artificial intelligence (AI)-powered coding assistant, that could result in remote code execution and theft of API credentials.

https://thehackernews.com/2026/02/claude-code-flaws-allow-remote-code.html

Malicious Google Chrome extensions have stolen large language ...

2026-02-17T07:35:54Z

Malicious Google Chrome extensions have stolen large language model (LLM) conversations and browser data from hundreds of thousands of users.

Application security vendor Ox Security detailed a campaign in a recent research blog involving malicious Google Chrome extensions posing as legitimate extensions from a company called AItopia that adds a sidebar on websites that enables chats with popular LLMs like ChatGPT and DeepSeek.

Ox researchers found that two extensions were copying the functionality of the legitimate app while also exfiltrating user conversation and browsing data to a command-and-control (C2) server. One, titled "ChatGPT for Chrome with GPT-5, Claude Sonnet & DeepSeek AI," had more than 600,000 users and a Google Chrome "Featured" badge, while the other, "AI Sidebar with Deepseek, ChatGPT, Claude and more," had over 300,000.

Stay alert, the extensions according to 0x Security have been already removed, I would not be surprised if new ones are already in the store...

👀 #nevent1q…tkhl

2026-02-09T05:37:47Z

👀

quoting
nevent1q…tkhl
The Bithumb case is getting interesting...

At the moment of the 620 thousand Bitcoin being sent to their clients by mistake, Bithumb had only 175 Bitcoins in their books... 👀

So, Bithumb internal system treated non-existent Bitcoin as real! 🤔

This is not going to end well for the exchange, a fat fine should come soon after and regulation for reserves integrity is key... Wonder how many CEXs have reserve integrity and proper audits...

#Bithumb

"You'd have to be braindead to believe WhatsApp is secure ...

2026-01-26T21:39:33Z

"You'd have to be braindead to believe WhatsApp is secure in 2026. When we analyzed how WhatsApp implemented its "encryption," we found multiple attack vectors"
-- Pavel Durov, co-founder of the Telegram messenger.

#WhatsApp

Make this viral! #nevent1q…dukq

2026-01-24T20:06:56Z

Make this viral!

quoting
nevent1q…dukq
⚡️🚨 NEW - TikTok updated its Privacy Policy and it goes far beyond basic app data.

The policy explicitly says TikTok may collect or infer sensitive personal data, including your:

➥ Citizenship or immigration status
➥ Religious beliefs
➥ Mental and physical health information
➥ Race or ethnic origin
➥ Precise geolocation
➥ Gender identity (including trans or non-binary)
➥ Sexual orientation.

TikTok says this data can be provided directly, inferred from your activity, or processed “as permitted by law” and with user consent

No, I have not, best wishes! Stay safe!

2026-01-23T13:52:58Z

In reply to nevent1q…dyvh
_________________________

No, I have not, best wishes! Stay safe!

Btcmap.org I believe is your best bet to find some. As of places ...

2026-01-21T15:45:18Z

In reply to nevent1q…7q8e
_________________________

Btcmap.org I believe is your best bet to find some.

As of places to check out, that country is filled with them, in the South Seville is something incredible, Marbella is a location to check out, La Alhambra in Granada is just incredible. More to the center Madrid alone will take you a couple of days just for landmarks like the Museo Del Prado, Plaza España, Puerto del Sol, Plaza Mayor (a must), Mercado de San Miguel, Parque El Retiro, Plaza Cibeles, Gran Via... The list goes on... And surrounding Madrid, I would recommend Segovia, Avila, Cuenca and Toledo. More to the North, beside the obvious Barcelona, you have many options, from wine tasting in La Rioja to the magical Asturias or the iconic San Sebastian... Enjoy!

4 in 5 small businesses had cyberscams last year, almost half ...

2026-01-20T06:26:54Z

4 in 5 small businesses had cyberscams last year, almost half were AI powered...

https://databreaches.net/2026/01/18/4-in-5-small-businesses-had-cyberscams-last-year-almost-half-were-ai-powered/?pk_campaign=feed&pk_kwd=4-in-5-small-businesses-had-cyberscams-last-year-almost-half-were-ai-powered

Stay alert! ...

2026-01-19T19:53:54Z

Stay alert!

https://thehackernews.com/2026/01/five-malicious-chrome-extensions.html

Interesting, hard to believe it took them so long

2026-01-19T11:21:02Z

In reply to nevent1q…lpqv
_________________________

Interesting, hard to believe it took them so long

That is a good summary, love the comparison table.

2026-01-19T10:11:12Z

In reply to nevent1q…3m26
_________________________

That is a good summary, love the comparison table.

👀

2026-01-17T10:03:30Z

In reply to nevent1q…nksl
_________________________

👀

What a mess...

2026-01-12T19:24:36Z

In reply to nevent1q…5yfd
_________________________

What a mess...

Nostr event nevent1qqs9dyus4v07zsd3gh2y0auu3w4ahhfuwhnqs397rc5j688ywz8c0pgzyr0vur09mfhwcykaygukgupxgypj7vwq0dkttn7g2yv9an73w2pu6n9ldc8

2025-12-18T10:39:38Z

https://www.darkreading.com/endpoint-security/chrome-extension-harvests-ai-chatbot-data

Time to move your residence out of France... #nevent1q…08g3

2025-12-13T20:12:47Z

Time to move your residence out of France...

quoting
nevent1q…08g3
🇫🇷 FRANCE: THE CAPITAL OF $5 WRENCH ATTACKS JUST GOT WORSE

A new law would force Bitcoiners to report exactly how much crypto they hold in self-custody, even if they never sold.

This creates a literal shopping list for kidnappers

Video by Rob Wallace

It will be depending on the person you are on boarding... A ...

2025-12-10T00:23:02Z

In reply to nevent1q…duf3
_________________________

It will be depending on the person you are on boarding...

A normie non tech savvy and little to none understanding of the power of decentralization and relay management.

Primal or Damus for mobile or desktop.

A tech savvy individual understanding the above and whom consider his CyberSec as a serious matter:

Android: Amethyst Amethyst (nprofile…wywf) , 0xchat
iOS: 0xChat 0xchat (nprofile…wj7d)
Desktop: nostrudel.ninja

Bookmarked

2025-12-09T17:27:22Z

In reply to nevent1q…surn
_________________________

Bookmarked

Yep, all risk assets will get a boost, at least in theory

2025-12-05T23:40:39Z

In reply to nevent1q…v2zp
_________________________

Yep, all risk assets will get a boost, at least in theory

ℹ️ For those that reside outside of USA and think thausing ...

2025-12-03T11:39:39Z

ℹ️ For those that reside outside of USA and think thausing Amazon, Google and Microsoft cloud services or any USA cloud service is secure and private for them:

. The US CLOUD Act from 2018, allows the US Government (and therefore their partners) data access regardless of storage location.
. Be smart, self host your data, and if you insist in doing it wrong, encrypt your data before you upload anywhere.

https://www.justice.gov/criminal/cloud-act-resources?ref=itsfoss.com

True and wise

2025-12-02T10:51:39Z

In reply to nevent1q…axug
_________________________

True and wise

You nailed the 85K

2025-12-01T08:42:08Z

In reply to nevent1q…8ef5
_________________________

You nailed the 85K

Season Messenger is listening to its users, read on, PFS will be ...

2025-12-01T07:26:21Z

Season Messenger is listening to its users, read on, PFS will be back and quantum resistent cryptography is being implemented among other features.

https://getsession.org/blog/session-protocol-v2

#session
#privacy
#messenger

It have been a long waiting, although the real liquidity will ...

2025-11-30T21:06:59Z

In reply to nevent1q…0ggl
_________________________

It have been a long waiting, although the real liquidity will start really getting in from Feb to Mar 2026 nevertheless, the QT ending is already bullish for Bitcoin and other risks assets

And QE in two days, that one is even more important, the ...

2025-11-28T18:10:39Z

In reply to nevent1q…re9m
_________________________

And QE in two days, that one is even more important, the liquidity won't be sudden but the FOMO is!

https://media.tenor.com/AQz3_zaiD14AAAAC/hysterical-laughter.gif

2025-11-27T19:48:49Z

In reply to nevent1q…0mel
_________________________

#Bitcoin, self custody and risk management, reading the changes ...

2025-11-27T12:38:08Z

In reply to nevent1q…6qv5
_________________________

#Bitcoin, self custody and risk management, reading the changes day by day, be ready to relocate fast, most will not do that, most are screwed unless this turn a surprising positive outcome, that, IMO is unlikely

Good question, the USA administration for once, but the previous ...

2025-11-25T06:39:02Z

In reply to nevent1q…nwag
_________________________

Good question, the USA administration for once, but the previous one probably was more pro war. But your question is good, what else changed, curious what people will come up with if any...

Good post! 👊

2025-11-25T06:18:21Z

In reply to nevent1q…wu98
_________________________

Good post! 👊

Mint will work fine

2025-11-23T21:57:54Z

In reply to nevent1q…q0g4
_________________________

Mint will work fine

I am assuming already most hacks are AI assisted and they will ...

2025-11-20T06:34:44Z

In reply to nevent1q…q53n
_________________________

I am assuming already most hacks are AI assisted and they will get way more sophisticated

True story, but soon, that won't be an issue, LLMs are going ...

2025-11-19T20:33:18Z

True story, but soon, that won't be an issue, LLMs are going to replace most of us in many areas and FOSS developers will probably be in the early list. I'll give it 5 years tops.
https://itsfoss.com/news/open-source-developers-are-exhausted/

Not that most of you give two cents about it since most don't ...

2025-11-06T10:24:23Z

Not that most of you give two cents about it since most don't care about privacy, but if you are one of those rare special individuals, stay away from ChatGTP

#ChatGTP

In yet another "Your chatbot may be leaking" moment, researchers have uncovered multiple weaknesses in OpenAI's ChatGPT that could allow an attacker to exfiltrate private information from a user's chat history and stored memories.

LOL! You can't make this shit up #nevent1q…49cd

2025-11-04T09:53:31Z

LOL!
You can't make this shit up

quoting
nevent1q…49cd
Nobel Peace Prize winner calls for military attack on her own country

Asked on Bloomberg’s ‘The Mishal Husain Show’ if she backs US military action, Machado said, “I believe the escalation that’s taking place is the only way to force Maduro to understand that it’s time to go.”

#realclownworld
#lol

FAFO...

2025-11-04T09:51:51Z

In reply to nevent1q…46d3
_________________________

FAFO...

At the end we need to find balance, it is a tool, we just need to ...

2025-10-31T16:21:48Z

In reply to nevent1q…2sx6
_________________________

At the end we need to find balance, it is a tool, we just need to use it wisely.

npub.cash does the job quite well, additionally, you may want to ...

2025-10-31T16:18:10Z

In reply to nevent1q…hqvw
_________________________

npub.cash does the job quite well, additionally, you may want to test as well the 0xchat (nprofile…lgp7) wallet, which is integrated with npub.cash addresses

lawyers will be lawyers ...

2025-10-30T02:53:05Z

In reply to nevent1q…e8tc
_________________________

lawyers will be lawyers ...

A piece of paper. HW are overrated, convenient, but all have ...

2025-10-30T02:51:29Z

In reply to nevent1q…xe9d
_________________________

A piece of paper. HW are overrated, convenient, but all have their flaws and pros and cons...

A small number of samples can poison LLMs of any size ...

2025-10-29T03:21:05Z

A small number of samples can poison LLMs of any size

https://www.anthropic.com/research/small-samples-poison

Install Linux Mint (coming from iOS this Linux distro will be a ...

2025-10-22T18:49:24Z

In reply to nevent1q…n6tz
_________________________

Install Linux Mint (coming from iOS this Linux distro will be a soft landing and it is getting traction)

Signal Messenger is Open Source as SimpleX, more over, both have ...

2025-10-21T01:37:36Z

In reply to nevent1q…svv6
_________________________

Signal Messenger is Open Source as SimpleX, more over, both have upgraded their encryption to level of quantum resistant...

This matters, most believe that if you are using a service that is e2ee you are good, but you are not.

Why?

Cyber Criminals and I will assume most three letter agencies are collecting all raw data they can from centralized services/servers and storing them for future decryption, clearly, if your cloud service is not upgraded or your messenger service is not resistant, all the data will be open for cyber criminals and agencies to look at...

I keep advising family, friends and clients, stay away from centralized services if possible and if not, verify they are upgraded if they use encryption

You are probably missing a relay supporting private DMs Try ...

2025-10-21T01:27:01Z

In reply to nevent1q…g9ae
_________________________

You are probably missing a relay supporting private DMs

Try adding,

wss://auth.nostr1.com/

Yes, npub.cash is not generating invoices, tried to swap with ...

2025-10-17T00:37:03Z

In reply to nevent1q…e5j3
_________________________

Yes, npub.cash is not generating invoices, tried to swap with Minibits, same issue...

Nice move, hopefully Elon Musk will be next to let the public ...

2025-10-16T00:44:12Z

Nice move, hopefully Elon Musk will be next to let the public know the names of the politicians pushing to remove our free speech.

And the cherry of the pie, the rules do not apply to politicians... The irony, their affairs should be public, yet they do want privacy to cover their corruption.

🚨 Harden your Windows systems using free, trusted open-source ...

2025-10-07T12:11:36Z

🚨 Harden your Windows systems using free, trusted open-source tools that cover audit, configuration, and monitoring. You don't need enterprise tools to raise your defense baseline — just a few solid steps.

Quick Actions (Under 30 Minutes):

• Run Hardentools — disable unsafe defaults instantly.

• Use CIS-CAT Lite — identify missing patches, open RDP, or weak policies.

• Check Local Admins — remove unused accounts, deploy LAPS for password rotation.

• Turn On Logging — enable PowerShell, Windows Defender, and Audit Policy logs.

• Run WinAudit — export a report and compare it weekly for unauthorized changes.

• Scan with Wazuh or OpenVAS — look for outdated software or exposed services.

Key Risks to Watch:

🔑 Reused or shared admin passwords

🌐 Open RDP/SMB without firewall or NLA

⚙️ Old PowerShell versions without logging

🧩 Users running with local admin rights

🪟 Missing Defender Attack Surface Reduction (ASR) rules

📦 Unpatched or unsigned software from third-party repos

🚨 Mobile Apps Leak Data — New findings from Zimperium have ...

2025-10-07T11:05:57Z

🚨 Mobile Apps Leak Data — New findings from Zimperium have revealed that one in three Android apps and more than half of iOS apps leak sensitive data. Nearly half of mobile apps contain hard-coded secrets such as API keys

Keep your mobile clean, remove all apps not really needed and be mindful of the ones you install and keep.

🚨 A group of academics from KU Leuven and the University of ...

2025-10-02T06:55:54Z

🚨 A group of academics from KU Leuven and the University of Birmingham has demonstrated a new vulnerability called Battering RAM to bypass the latest defenses on Intel and AMD cloud processors. "We built a simple, $50 interposer that sits quietly in the memory path, behaving transparently during startup and passing all trust checks," researchers Jesse De Meulemeester, David Oswald, Ingrid

And just like that billions invested in HW security gone, back to the drawing table for Intel and AMD, and those researchers... making this public before a solution is deployed, not cool.

🚨 Cybersecurity researchers have flagged a previously ...

2025-10-02T06:52:19Z

🚨 Cybersecurity researchers have flagged a previously undocumented Android banking trojan called Datzbro that can conduct device takeover (DTO) attacks and perform fraudulent transactions by preying on the elderly.

Take time and educate your elders.

LOL! Being there myself so many times, it is sad but true... I am ...

2025-09-26T10:58:42Z

In reply to nevent1q…3djt
_________________________

LOL!

Being there myself so many times, it is sad but true...

I am forecasting a change soon thanks to LLMs, tech savvy markets like China, India and Russia are loaded with excellent engineers and enthusiasts that will for sure leverage LLMs power and come with alternatives, perhaps optimizing current kernels, perhaps making one from scratch more intelligent and compatible.

But the problem your friend has is the same one as usual, running a laptop with proprietary close source HW always will be an issue with Linux or any other new OS...

Solution:
Sucks but for laptops:
Get a USB Bluetooth 5.0 dongle
Get a cheap 2K BT web cam or USB (I prefer BT)
A USB hub with two slots (small not to bother)

All will work, but is not pretty nor ideal. This solution overcomes the propiertary HW issue most people have with their PC, specially those with the POS "Intel", avoid buying that garbage anytime you can, AMD is a better solution, for now...

cool one! :)

2025-09-24T09:30:00Z

In reply to nevent1q…kjxt
_________________________

cool one! :)

🚨 Google on Wednesday released security updates for the Chrome ...

2025-09-18T07:59:03Z

🚨 Google on Wednesday released security updates for the Chrome web browser to address four vulnerabilities, including one that it said has been exploited in the wild.

The zero-day vulnerability in question is CVE-2025-10585, which has been described as a type confusion issue in the V8 JavaScript and WebAssembly engine.

#vulnerability

Fun!

2025-09-13T19:01:51Z

In reply to nevent1q…rad3
_________________________

Fun!

🚨 Chinese censorship sprang a major leak on September 11, when ...

2025-09-13T18:43:19Z

🚨 Chinese censorship sprang a major leak on September 11, when researchers confirmed that more than 500GB of internal documents, source code, work logs, and internal communications from the so called Great Firewall were dumped online, including packaging repos and operational runbooks used to build and maintain China’s national traffic filtering system.

This is hailed as a "game changer" for circumvention tools (e.g., VPNs) and research into GFW vulnerabilities.

VPN providers will learn from these documents probably a lot about DPI and how to circumvent it.

you will receive zaps in the LN address you set in your profile. ...

2025-09-12T14:47:20Z

In reply to nevent1q…pye9
_________________________

you will receive zaps in the LN address you set in your profile.

to access you sats use npub.cash wallet or 0xchat wallet, you can withdraw to Minibits or any other wallet that supports cashu and LN.

🚨 A security weakness has been disclosed in the artificial ...

2025-09-12T07:45:00Z

🚨 A security weakness has been disclosed in the artificial intelligence (AI)-powered code editor Cursor that could trigger code execution when a maliciously crafted repository is opened using the program.

the comment of the day!

2025-09-09T23:10:45Z

In reply to nevent1q…zlsh
_________________________

the comment of the day!

nah, just to study more and setup yourself with the best possible ...

2025-09-09T18:17:51Z

In reply to nevent1q…083d
_________________________

nah, just to study more and setup yourself with the best possible OpSec for your specific user case.

true

2025-09-08T18:58:11Z

In reply to nevent1q…p23g
_________________________

true

not easy but good OpSec

2025-09-08T18:57:48Z

In reply to nevent1q…jueg
_________________________

not easy but good OpSec

love it

2025-09-08T18:57:08Z

In reply to nevent1q…t33l
_________________________

love it

no, at least not yet, just learn

2025-09-08T18:56:46Z

In reply to nevent1q…auce
_________________________

no, at least not yet, just learn

ha! good catch, and an important one!

2025-09-08T18:51:44Z

In reply to nevent1q…r6pc
_________________________

ha! good catch, and an important one!

Today, after a long discussion about best OpSec practices I ...

2025-09-08T16:41:06Z

Today, after a long discussion about best OpSec practices I thought it will be nice to share with the Nostr community, and read what others have to say about it,

There are many here in #Nostr that are #privacy advocates and believe they know enough, they use what they believe is a secure OpSec:

1. No corporate social networks, that includes LinkedIn or not sufficient decentralized ones (whatever that means for them).
2. No Messenger Chat app that requires a mobile phone number.
3. Linux of course; so they say; although the majority keep using iOS or Microsoft as their default OS... (I am guessing of course, but I am quite positive it is a good guess ... ).
4. A Pixel 7 or higher rooted with the right OS.
5. A VPN, one of the few that do not log (so they say) and you can pay cash or LN BTC or XMR. Most do this wrong BTW...
6. The right Private DNS, never a corporate one...
7. A private email address, so most will use Proton or Tuta... Odd how there are only few options with no KYC, if it is a niche, the fact that there are no more options is suspect, two companies only... they become a honeypot.
8. They use FOSS as much as possible for all their work and location apps.
9. GPS OFF as a norm. OpSec matters here, most people do this wrong.
10. A nonKYC eSIM with only data, few providers, silentlink being one of the favorites.
11. A powerful router with firewall and Pihole or adguard, plus built in support for VPN (most do this wrong)
12. Self hosted cloud, no commercial cloud never (most don't do this, they rely on the usual privacy oriented, the ones very well known, there are about 3...) Are you paying attention?
13. Their own BTC Node
14. A privacy oriented browser, there are not that many, Mullvad Browser, hardened with extension Firefox (requires work), hardened with extensions Brave. Most use the same extensions, for they are the recommend ones, Have you wondered why they are not built in already in the browsers?
14 Tor Browser for research, specially those that are devs or white hats... (no black or grey hats here, right...)
16. Keeping all your software and OS for all devices up to date, which is recurrent workload, failing to do that could lead to exploits and exposure to cybercrime.

And more, but this is a simple summary.

Now the best part:

All of the above, makes you, in a way, a target, for your digital footprint is of a minority, easy to identify, you are decently informed and therefore you follow the same rules and use the same tools as the rest of a small tribe, a very distinct one, not that hard to identify with the right tools that constantly analyze metadata.

Is there a better way?

In my opinion, yes.

1. If you keep your current OpSec, study and do it right, most do it wrong and generally due to lack of discipline and endurance of the annoyance of cyber security, which is very inconvenient, end up being not only known targets but vulnerable high end targets.

2. To be part of the large noise made by the clueless normies is the optimal play but that is an OpSec very few will have the discipline, time and knowledge to do correctly. Won't discuss the know how here. Hire a #cybersecurity expert if you want this and don't know how is done.

What are your thoughts?

#asknostr

🚨 A federal jury awarded plaintiffs suing Google $425 million ...

2025-09-07T21:47:37Z

🚨 A federal jury awarded plaintiffs suing Google $425 million in damages, holding that by collecting the data of users who had switched off an app activity-tracking feature, the tech giant invaded the privacy of millions.

More Google lies caught, but... 425 million dollars and all is well, they will keep doing it for sure. I wonder, How many times will take for true accountability? Problem is, there is not a real incentive for them to stop.

- LNVPN (https://lnvpn.net/) - encryptSIM ...

2025-09-06T22:00:03Z

In reply to nevent1q…hc94
_________________________

- LNVPN (https://lnvpn.net/)
- encryptSIM (https://www.encryptsim.com/)

both accept cryptocurrency payments (Bitcoin, Monero, etc.).

Did you have a bad experience with Silent Link? Please share , IMO they are e excellent, never an issue.

Have to agree, in fact there are already clear signs this is ...

2025-09-06T20:42:56Z

In reply to nevent1q…lzrz
_________________________

Have to agree, in fact there are already clear signs this is building up, open source is fundamental for this to happen

This #nevent1q…adtu

2025-09-06T20:42:07Z

This

quoting
nevent1q…adtu
🤔 The more I use LLMs and the more I think about their potential, the more I am convinced that most countries currently behind in terms of development and with a controlled corruption will be able to advance themselves forward at warp speed.

Many fear LLMs, in my opinion, mainly the ones with the most to loose, to loose control over people, to loose resources and profits.

Hopefully exciting times ahead

🚨 Cybersecurity researchers have discovered a malicious npm ...

2025-09-02T09:26:12Z

🚨 Cybersecurity researchers have discovered a malicious npm package that comes with stealthy features to inject malicious code into desktop apps for cryptocurrency wallets like Atomic and Exodus on Windows systems.

🚨🚨🚨 Must read ...

2025-08-30T08:29:32Z

🚨🚨🚨 Must read

https://bobdahacker.com/blog/hacked-biggest-chinese-robot-company

Thanks! When the Android apk repository in Github?

2025-08-30T07:12:55Z

In reply to nevent1q…zhsf
_________________________

Thanks!

When the Android apk repository in Github?

In theory... I will wait until it is seen in Github, currently no ...

2025-08-29T22:16:17Z

In reply to nevent1q…4ruu
_________________________

In theory... I will wait until it is seen in Github, currently no Github link to be found, hopefully one will show up soon...

it makes sense

2025-08-29T11:14:40Z

In reply to nevent1q…5p3c
_________________________

it makes sense

This will be interesting... #nevent1q…p0h9

2025-08-29T08:16:09Z

This will be interesting...

quoting
nevent1q…p0h9
It's launch day!!! Damus is now available on all platforms with Android ready to download! Thanks to everyone who has contributed, tested, and waited patiently for this release. We can't wait to hear what you think! https://damus.io/android/

https://damus.io/damus-android/android_video/master.m3u8

🚨 Overnight on Aug. 26 in just over four hours, unidentified ...

2025-08-29T08:11:29Z

🚨 Overnight on Aug. 26 in just over four hours, unidentified attackers compromised more than 1,000 Javascript developers, stealing their GitHub tokens, npm tokens, SSH keys, application secrets, and cryptocurrency wallet files.

They pulled that off by infecting a widely popular build system called "Nx" and by infusing their supply chain malware with artificial intelligence (AI)-powered intel-gathering capabilities.

https://www.darkreading.com/cyberattacks-data-breaches/1000-devs-lose-secrets-ai-powered-stealer

So from 2027, many programmers will move from Google store to ...

2025-08-27T08:22:14Z

So from 2027, many programmers will move from Google store to Huawei store, not complicated and bigger market

https://news.itsfoss.com/new-android-sideloading-rules/

Pretty much same results, waiting for new versions to test again. ...

2025-08-23T20:23:20Z

In reply to nevent1q…qp4k
_________________________

Pretty much same results, waiting for new versions to test again. The current version, IMO shouldn't be in production.

BTW, 0xChat already supports NIP-EE, only advantage I see is for groups, current implemented EE2E messages in Nostr is good enough.

It is wise to wait for reviews ... It will save you few ...

2025-08-22T20:29:49Z

In reply to nevent1q…8d5z
_________________________

It is wise to wait for reviews ... It will save you few heartburns for sure...

Lumia's Yoav Magid Discusses Siri & Apple AI Privacy ...

2025-08-22T20:27:04Z

Lumia's Yoav Magid Discusses Siri & Apple AI Privacy Risks

https://www.blackhat.com/us-25/briefings/schedule/index.html?_ga=2.185942305.92694596.1752608221-151668467.1748531774&_gac=1.11871104.1752608221.EAIaIQobChMIpfDOsc6_jgMVljcIBR0KWAL-EAAYASAAEgLMgvD_BwE#applestorm---unmasking-the-privacy-risks-of-apple-intelligence-44712

If you are using FreeVPN Google chrome extension, unistall it, it ...

2025-08-21T06:11:10Z

If you are using FreeVPN Google chrome extension, unistall it, it is spyware, "Chrome verified"...

Here the findings:

https://www.koi.security/blog/spyvpn-the-vpn-that-secretly-captures-your-screen

you are welcome!

2025-08-18T07:18:06Z

In reply to nevent1q…kajg
_________________________

you are welcome!

Okay, that is quite specific and a valid point, ironically, very ...

2025-08-18T07:13:29Z

In reply to nevent1q…mhve
_________________________

Okay, that is quite specific and a valid point, ironically, very easy to protect against it, it is just, a bit inconvenient.

Solution:
Get yourself a non smartphone for phone calls and SMS. The battery last like a week and you will need it mostly for insecure 2FA from decadent banks and services and not much more, unless you still use a mobile live to communicate with loved ones, strange nowadays but happens.
For data on your mobile use a mobile hostpost.

This opsec protects you from the SMS treat and from clicking on your mobile a link written in a SMS to a malicious site, some of this low end mobile have data and may have hotspost capability reducing opesec cost

Good question, Simple answer: If you stick to Play Store and your ...

2025-08-18T06:55:32Z

In reply to nevent1q…q365
_________________________

Good question,

Simple answer:
If you stick to Play Store and your mobile number is not listed in the dark web, I wouldn't bother.

Users are the weak link always:

- Clicking on a link we should not.
- Downloading a file we should not.
- Installing an app we should not.

Now, if you are a targeted individual, then you need to hire a cyber sec expert to build you a tailored opsec. It will be worth it and is most of the time more affordable than expected

1. seedsigner (https://seedsigner.com/) 2. foundation ...

2025-08-15T09:24:44Z

In reply to nevent1q…p4kl
_________________________

1. seedsigner (https://seedsigner.com/)
2. foundation (https://foundation.xyz/)
3. keystone (https://keyst.one/btc-only)
4. Coldcard (https://coldcard.com)

rod ✪ (nprofile…jwdq) wrote a decent guide on choosing the right seed signer (aka Hardware Wallet)

https://rod.npub.pro/post/226453/

### Korea wins world’s top hacking contest for 4th consecutive ...

2025-08-12T05:04:57Z

### Korea wins world’s top hacking contest for 4th consecutive year

https://www.koreatimes.co.kr/business/tech-science/20250811/korea-wins-worlds-top-hacking-contest-for-4th-consecutive-year

https://tuta.com/blog/ai-email-writers-review

2025-08-10T07:11:29Z

https://tuta.com/blog/ai-email-writers-review

use hashtags to search your favorite topics and build your tribe, ...

2025-08-10T05:06:35Z

In reply to nevent1q…pu5z
_________________________

use hashtags to search your favorite topics and build your tribe, those "packs" are an echo chamber of nostr influencers taking to each other and adding little value to your knowledge and interest base.

you can search in the Global Instance any keyword without the hashtags too, find your tribe or create one. You can join groups/communities as well.

good luck

There is not a perfect answer and unfortunately, the better the ...

2025-08-10T05:01:36Z

In reply to nevent1q…rq57
_________________________

There is not a perfect answer and unfortunately, the better the browser for privacy the less convenient:

#### For Desktop:

- Most secure ones (some sites won't work):

1. TOR Browser

2. Mullvad Browser

- Less Secure but way more convenient, you need to add extensions to upgrade your security and tweak your settings to remove browser garbage and improve privacy. They both support IPFS.

1. Brave Browser (you can sync across devices without an email account, quite convenient), profiles are quite convenient as well. VPN built in is paid only.

2. Opera Browser (you need an email address to sync devices, use a burner), the VPN built in is decent and with a free tear from the box.

#### For Mobile

- Most secure:

1. TOR Browser

- A bit less secure, but all sites work, requires tuning settings and adding extensions to improve security, as TOR, the Browser is FOSS.

1. Fennec

- Less secure and no extensions possible, needs privacy tunning in the settings, quite convenient and fast browsers for mobile, they both support IPFS.

1. Brave Browser

2. Opera Browser

Nostr event nevent1qqsr0p72hxlc4gfna7f90rdsphjg7pnhu3yyznklyn5gpe34am7xrcqzyr0vur09mfhwcykaygukgupxgypj7vwq0dkttn7g2yv9an73w2pu605hkce

2025-08-09T16:55:52Z

https://thehackernews.com/2025/08/researchers-uncover-gpt-5-jailbreak-and.html

tried that too and worked for me as well, I assume their first ...

2025-08-08T06:38:57Z

In reply to nevent1q…qakv
_________________________

tried that too and worked for me as well, I assume their first release had the bug and they rolled a new version the same or next day

Nostr event nevent1qqs28hrkzmd4y646ht23tzcz595ekukcl6p7kvr2c9xrxc9xhw53c2gzyr0vur09mfhwcykaygukgupxgypj7vwq0dkttn7g2yv9an73w2pu6gspr5y

2025-08-05T05:46:18Z

https://visit.gitex.com/web/registration-portal/event-detail?eventId=252175&utm_source=tech-target-holdings&utm_medium=mediapartner&utm_campaign=20250723-gitexglobal25-visitors-partner

Some cybersec experts argue that having a password and 2FA app ...

2025-07-31T19:20:46Z

In reply to nevent1q…7vxr
_________________________

Some cybersec experts argue that having a password and 2FA app together in one app reduces your OpSec, I agree.

Having all your eggs in one basket is not ideal, best to keep it harder for the criminals.

Having in your Desktop Keepass for your passwords and not adding the 2FA to it (although is very convenient) is a better practice, now having Proton Authenticator for Desktop (Linux and Windows) is a good OpSec.

I agree the network connection is not ideal, but it is not needed, only if you wish to synch, just avoid it. In the Desktop firewall the app for no internet access. For the mobile, Aegis + Keepass ia a winning formula

I suggest: Librespeed app in your mobile speedof.me in your ...

2025-07-31T07:13:48Z

In reply to nevent1q…z644
_________________________

I suggest:

Librespeed app in your mobile

speedof.me in your desktop browser

Russia has blocked access to Speedtest, a popular internet speed ...

2025-07-31T07:07:44Z

Russia has blocked access to Speedtest, a popular internet speed testing tool developed by U.S. company Ookla, claiming the service poses a national security threat and could aid cyberattacks.

https://therecord.media/russia-bans-speedtest-ookla