Blcokstream Green wallet seems unaffected.
But if you’re using Jade, get on the security fix IMMEDIATELY. 
Discussion
One hundred percent chance of bullshit, friend. They want your seed words.
🎣
FUCK. Fuck fuck.
Just checked the sender and it is a scam. I’m not a HW customer but do get these type emails occasionally.
I saw the Jade info being shared by others showing compromising info so timing seemed relevant.
I was so intent on helping without doing what I always do and check sender/block.
I have egg on my face & entire body at the moment. Go about your days. I will be flogging myself most of the day.
These scams always hit hardest by timing. For example if you just used your credit card in a different city and then by coincidence right after you get a phishing email that looks like it came from your bank, the seeming urgency disengages prudence.
👆DISREGARD
I’M A FUCKING MORON.
OR MAYBE I’M JUST POINTING OUT THAT HUE SHOULD ALL BEWARE OF PHISHING SCAMS.
CHECKS NOTES: NOPE, I’M A FUCKING MORON.
Did this come with a link to an external site? I do not use this wallet. I am not able to see where the scam is unless there might be a fraudulent site set up to capture seed phrase. nostr:nprofile1qqs9cjlnu4yxs0tpldetuh6gct0lpn63jqdemkvward30rh72ghryhcpp4mhxue69uhkummn9ekx7mqpr4mhxue69uhkummnw3ez6ur4vgh8wetvd3hhyer9wghxuet5qy2hwumn8ghj7un9d3shjtnddaehgu3wwp6kyexscqr nostr:nprofile1qqswum4p82uluhz2dr40nvdrflspffntgqghc58w9fs57nx6jkdkuaqppamhxue69uhk2tnwdaejumr0dsq3vamnwvaz7tmjv4kxz7fwwpexjmtpdshxuet5qy08wumn8ghj7en9v4j8xtnwdaehgu3wvfskuep0wphhqatvv9eqal5zn8
It did come with a link not shared.
That’s absolutely what it was. Did you look up the domain name to see who runs it? What was the email domain of the sender?
I’m ashamed to show the email domain as I always check this shit because I do get phishing stuff occasionally. This time I didn’t and moved too quick to think I was helping.
But to add to my embarrassment, here is the sender email: glas@vhlgroep.nl
I will be in the quad later. Please bring small rocks & sticks to throw and hit me with. Thx.
You should immediately open a support ticket with nostr:npub1jg552aulj07skd6e7y2hu0vl5g8nl5jvfw8jhn6jpjk0vjd0waksvl6n8n and send them the entire email including the headers so they can investigate it.
Will do. nostr:npub1qg8j6gdwpxlntlxlkew7eu283wzx7hmj32esch42hntdpqdgrslqv024kw coming your way.
nostr:npub17rlc0emedw5xljztfqrmykjaacsx6ujvdas64zznjadrnhhwlavq4jjtgg shared another vulnerability yesterday that I will send as well.
Some good coming out of bad🤷🏻♂️
Sounds like someone has learned an important lesson today.
Sharing news too quickly is not good.
I click no links to anything, ever, and protect my coins like I would a baby.
nostr:npub17rlc0emedw5xljztfqrmykjaacsx6ujvdas64zznjadrnhhwlavq4jjtgg sharing a Jade vulnerability yesterday & then this email from “Blockstream” caught me off guard.
I screen shot/shared without normal due diligence.
Won’t happen again.
Verify before acting, always.
Did I share a Jade vulnerability? Pretty sure I only posted about mining with it.
But don't sweat it man we all make mistakes. The difference is only that on Nostr you can't delete them.
Srsly on Twitter people would listen to me for security advice, one night I tweeted some offhand assumptions just as passing thoughts, people took them as warnings, turns out they were all totally incorrect. So people first thanked me for the warning then accused me of spreading FUD.
Luckily the devs understood the original tone of the tweets as passing thoughts and assumptions and held no ill will, but I still felt shitty for how they were misinterpreted.
Just to share that I made a similar mistake as well. Difference is I could delete it the next day.
I learned my lesson then. Sometimes you gotta learn the hard way.
Besides in this case you didn't share the phishing link and your intention was to help people. So no harm done, you were tryna look out for people, and you learned a lesson for the future.
Don't beat yourself up about it man.
PSA:
Don't open emails about "security"
Any vulnerabilities will always be disclosed on official public communication channels.
Email is dead, never use it as a primary source.
nostr:npub10chlkc62tk7yr5m9qjc2u7rs3ufhhrq8yukeey0c5lysqkp2gumq93mnex, Curious…where did you see this “security advisory/alert”.
Email. I have mult email addresses and know that one was “exposed” at one point.
I get some phishing at times on it.
I misread this one for several reasons. Biggest is moving too fast. Saw it, immediately screen cap & share as warning. Shared With no links or anything by design, just as fyi.
Egg on face but all good.
You know what got me initially on this one. Got me meaning for a few minutes, enough to share. The email was worded so well. Usually these scams are full of misspellings and grammar issues.
AI is now here and Phishing.
I can relate. I have an Apple family set up on my iPhone. I got an email the other day with a receipt from apple confirming a purchase of a game or a movie, I can’t remember which one. I asked all my kids and wife if they made the purchase. They all said no. I was so pissed that my kids probably purchased a game or movie and just didn’t want to tell me so I clicked on the link in the email to log into my apple account with my apple ID.
It all looked legit from apple. I logged in with my credentials and I even entered my Apple Card credentials as well! After realizing that my kids were telling the truth, I started looking more into the email address that contacted me as well as the site I was directed to via the email. The email address was not an apple address…and the website only had one clickable link. THEY GOT ME!
Because I was acting in haste I didn’t do my normal due diligence and my normal routine to verify if the email was legit, which it wasn’t. It was a typical phishing scam. I immediately changed my Apple ID and I requested new numbers (which can be done with a click on the iPhone) for my Apple Card.
A few hours later I noticed several failed purchase attempts on my Apple Card. The scammer was attempting to use my card information to make large purchases online. It was good I caught this fast enough.
Lesson learned is don’t allow your anger/haste of seeing a family member making a purchase from a shared account without your permission cause you to act quickly to reverse the charge. After all, the game or movie was only a few dollars. I wound up not losing anything except a few minutes of my time that it took to change my Apple ID and my Apple Card information.
I get those too from Apple and have done the exact same thing without going as far as the link clicking.
I’ve literally conditioned my brain to not click links.
I’d rather type the name of something into Brave and go from there to log into something.
My kids & wife were like I was attacking the thermostat setting (which I do constantly too). A house at 68 when it’s 90 outside is fuckin freezing. My daughter argues back while wearing a sweatshirt in the house. 🤷🏻♂️
You’re better than me. When it’s 90 or better outside I keep the thermostat at 72. Still freezing and quite noticeably cooler when you come in from a nice run or bike!
nostr:npub1jg552aulj07skd6e7y2hu0vl5g8nl5jvfw8jhn6jpjk0vjd0waksvl6n8n, could you chime in here on this “security advisory” please.
That you can't delete notes on Nostr is cool in some situations...
In others...:
nostr:npub10chlkc62tk7yr5m9qjc2u7rs3ufhhrq8yukeey0c5lysqkp2gumq93mnex got duped by a phishing campaign, posted on Nostr, realized it and commented below the original note.
But can't delete it so note still gets boosted 9 hours later. On the other hand a good example of verify first.
But I’ve also posted this before. 😅🚀🤦♂️🫡📽️👀🥹😘🔥🙏😱 
i will not say bitcoins 😂😂😂
I don’t have a problem with “bitcoins” and I don’t understand why people do
I could say i have a lot of bitcoin or a lot of bitcoins. The first one could be .5 btc but the second must be multiple whole coins
