Seems inevitable. Everyone is pretty cavalier about pasting nprivs. Itâs only a matter of time before an exploit is found on a popular client.
Discussion
aaah i see i see
i use nosx2 on browser so im gucci prolly
but e.g. the amethyst app doesnt need to have an extension right?
Browser extension helps. You probably wonât be in the first wave.
Letâs not forget though that LastPass was recently breached.
does nosx2 has a same vulnerability as LP?
Theyâre very different. I donât have any special knowledge about either.
My original post was more about the general inevitability of a leak by *some* system.
The bounty for such a leak is arguably higher on nostr than in legacy social media. If youâre able to bulk-compromise npriv keys, you can hijack everyoneâs zaps, at least until the problem is contained.