THIS ACCOUNT HAS BEEN COMPROMISED
Please unfollow this account and follow our new account nostr:npub1w27mc4aa6m0ufe3xs5z3m6qyr52gc0rglept7vqlwx4xeaf72tasnqz70r
Discussion
follow unfollow new ACCOUNT account account HAS BEEN this our THIS nostr:npub1w27mc4aa6m0ufe3xs5z3m6qyr52gc0rglept7vqlwx4xeaf72tasnqz70r COMPROMISED
Please and
Also change the link on your official website and put a nip-05 as soon as you can
wtf...
nostr:nprofile1qqs9vmqkduad4vxglwja5q2mpvauer4nd9452he2r4pml0vhqktyd2qpzemhxue69uhhyetvv9ujucm0d9hx7uewd9hj7aqfmp9 Just confirming.
How would one know that this message is from coinos itself and not a fake?
Confirming this from my personal account
How'd the nsec get compromised?
I'm not exactly sure unfortunately
How do you know it’s compromised then?
Dang, sorry to hear that!
Shoe on head please.
my webcam is too crappy to capture the date i wrote out 
You're good. +10 style points.
Crappy is good. LLMs struggle with crappy
Nice shoe 👌
🫶🏼👌🏾
I've never seen a banana hammock that big.
Looks like it could transport an elephant.
Followed the new account. 🫡
in the case of a leaked nsec, the easiest way to prove it is just drop the nsec
How did you confirm compromise?
🧐
🫡
Nostr security is hard.. every application has the option to paste your nsec but very little way to ensure it’s not compromised. Nsec signers and other ways to log-in with Nostr needs to be improved..
Yup. Most Nostr users that have been here for a little while have done things that, from a raw security perspective, mean we should assume our nsecs are already compromised and continue to use them with that in mind. Once this is better addressed users arriving afterwards will be in a better place.
Nostr signers . The copy paste is the weak point , if only human brain can memorise that key .
The good way would be generate your seed phrase ( mnemonic) on offline device to prevent any network exposure
Rekt
Never got around to giving this wallet a go,guess I won't now
How does one go through this many security failures in so little time?
I don't want to be rude, I really like what you guys are doing, and I don't want to make a bad situation worse, we bitcoiners should stick together.
This is coming one after another. Please take care of your security.
How do we know this message has not been compromised?
🤔
nip05
Ehhh.. that's more to prove the person owns the account, not that they posted the message.
Ok
But how do I know this npub had any nip-05 alias configured and it has changed to another npub?
I followed this npub, not the NIP-05 alias...
I don't remember which DNS name was defined this npub....
coinos is a company.
https://coinos.io is their domain.
are you for real asking how do we know the new npub belongs to coinos?
or are you trying to ask a more general question about how to verify people with compromised nsecs?
The second one.
I understand nip-05 use for a company with a known DNS name to point to it's 'official' npub.
But I think that is of no use for people's npubs.
I think WoT is a better option there.
🫂
😳
🤯😳
Cc nostr:nprofile1qqsylfw3csf79dz7zr2qhu6k92msrffnzgrwxkwfpw4wp6vml4kxusgpp4mhxue69uhkummn9ekx7mqpz4mhxue69uhk2er9dchxummnw3ezumrpdejqzrmhwden5te0dehhxarj9ekk7mgz5wqse
Maybe recommending coinos to you was not such a good idea..
Let's take this as a lesson and we should set up our own nostr:nprofile1qqsyv47lazt9h6ycp2fsw270khje5egjgsrdkrupjg27u796g7f5k0spzemhxue69uhk2er9dchxummnw3ezumrpdejz7qgwwaehxw309ahx7uewd3hkctcprdmhxue69uhkummnw3ez6vfwde3x7tnpdenkzmnf9e3k75xqss4 hub for #edufeed
Conta da Coinos comprometida
Será que agora vão entender que o nostr precisa de rotatividade de chaves, revoke e subkeys como GPG?
Shit, if my associated lightning url gets cooked, that's gonna be the last straw.
nostr:note1yl29403qqet0wlvhdftdthfj2c03dwmmdshptw2k5slnsmc9xxaqw2n4g4
ffs
Getting your nsec compromised shouldn’t make you lose all your followers.
We need to decouple private keys and identity. Private keys should never leave the device that generated them.
Anyone working on the equivalent of a SAFE multisig for Nostr?
I know about Frostr. Is anyone using it? Any other explorations?
nostr:nprofile1qqs24yz8xftq8kkdf7q5yzf4v7tn2ek78v0zp2y427mj3sa7f34ggjcpzamhxue69uhhv6t5daezumn0wd68yvfwvdhk6tcppemhxue69uhkummn9ekx7mp0qyg8wumn8ghj7mn0wd68ytnddakj703s8dt , it would be nice seeing in the UI the last time a npub profile has been updated for cases like this one.
🫂
cc. nostr:nprofile1qqsyvrp9u6p0mfur9dfdru3d853tx9mdjuhkphxuxgfwmryja7zsvhqpzamhxue69uhhv6t5daezumn0wd68yvfwvdhk6tcpz9mhxue69uhkummnw3ezuamfdejj7qgwwaehxw309ahx7uewd3hkctcscpyug
mark