I made my secret key public on nostr for about a week or so and nothing happened, which makes it apparent that most cyber attacks are agenda-based acts of social engineering.

My accounts was recently compromised by someone with a grievance on Tiktok that was sniffing around my codebase and discovered by GLOBAL_SECRET_KEY used to create badges or decentralized transcripts in my education application. There were also some other DoS attacks but those are relatively simple to take care of.

I ended up creating a 15 minute lecture on the nature of basic app security practices and the social nature of computer ethics violations.