I agree, but keys will still get compromised as well. Then you are screwed. Guess bunkers would help with that??
Discussion
You are right. Something is not totally finished about safety in Nostr.
Nothing better than educating people about phishing technics.
Personally I use the alby extension on my laptop to sign my Nostr interactions. I assume the risk is less bigger. What do you think ?
I use @alby on desktop as well for the extension and I run albyhub locally. Amber on android and it is awesome. That has upped my mobile usage a lot since I didn't trust putting my nsec in just any app. Especially after I decided to stick to one identity.
Do you know an equivalent of amber on iOS ?
I don't use ios myself, but think I have heard people talking about damus and nostur both being able to do event signing? Not sure though, @jb55 would be able to tell you, he made #damus.
Apparently nostr:npub1yaul8k059377u9lsu67de7y637w4jtgeuwcmh5n7788l6xnlnrgs3tvjmf is working on it.