Have been looking into this. So, as I understand LNDhub is an open-source web application that allows to connect a user with an LND node.

When I create a lightning wallet in BlueWallet, I connect via LNDhub with their instance of the LND, their “lightning node”. That means that I will be using their channels, and in theory they could just mess with my funds.

However, as I understood, the reason they cannot mess with my funds is because when I create the lightning wallet, I also create a unique node macaroon and TLS certificate, apart from the set of private keys from the bitcoin wallet, which ensure that only me can access my funds.

Alternatively, one can have their own lightning node and connect to it via LNDhub, however this requires that you setup your channels, etc. So, I understand this is not for everyone. Also, using your own lightning node could be a case for privacy and security reasons (surveillance, maintaining the node…).

Is there any way I am still wrong? If so, can you describe where I may have misunderstood?