π
Interesting since Cake is a huge player in Monero
nostr:npub10pensatlcfwktnvjjw2dtem38n6rvw8g6fv73h84cuacxn4c28eqyfn34f nostr:npub1qny3tkh0acurzla8x3zy4nhrjz5zd8l9sy9jys09umwng00manysew95gx Any organization that funds btc projects and cares about decentralization and privacy should immediately stop any support for Breez, Lightspark, Wallet Of Satoshi, CakeWallet, Blitz or any other bad actor who is supporting LightSpark's dangerous, zero-privacy, centralized solution... more details: https://github.com/buildonspark/spark/issues/64 ... that fact that OpenSats is giving money to Blitz and CakeWallet is just insane
Discussion
Cake is happily sharing your IP address with LightSpark, one of the most dangerous compliance-focused crypto companies in the USA....
For anywhere I can start looking?
thanks for the hint, are there any alternatives that are more privacy focused?
nostr:npub1tr4dstaptd2sp98h7hlysp8qle6mw7wmauhfkgz3rmxdd8ndprusnw2y5g what wallets do you recommend that respect user's privacy?
Not being a Cake user myself, I wasnβt aware they were working on a Breez SDK feature. Sethβs not as active on Nostr as the other place, but as the ops lead at Cake I imagine heβd have a lot of insights into this topic. Iβve seen him post some positive things about Spark, including in this article he published a few days ago.
https://bitcoinmagazine.com/technical/spark-and-ark-a-look-at-our-newest-bitcoin-layer-twos
The ideal situation also requires some work -- your own node, or Alby Hub, hooked up to Zeus or Alby Go. That's completely self-custodial and awesome.
If you're not going to do it that way, and want something easier, then we get into the territory of "harm reduction" -- and it's most critical here not to allow your funds to be seen by the known bad actors in the space, who share your transaction data with LightSpark (and, basically, Mossad, or any government who cares to ask Lightspark for it)....
My understanding is that the known bad actors in the space are:
Breez
LightSpark
Wallet Of Satoshi
Cake Wallet
Blitz Wallet
But there might be others. The main thing is to be sure that whatever wallet you uses does NOT use Breez or Spark as a back-end. If it does assume you're being tracked.
although i basically agree vis a vis lightspark, you're getting too carried away with this
Cake isnt "sharing your IP with Mossad"
the problem is they could if asked.
π Ok sure. You're right. Mossad has to ask politely, and then LightSpark will share your I.P. address.
Got me on that one.
its not funny.
defaults matter.
the possiblity of surveillance isnt the same thing as blanket surveillance.
and you're conflating the two irresponsibly.
Sure. But I.P. addresses going to a known company known to be knee-deep in politics and compliance tech, isn't that kind of similar to blanket surveillance?
No, its not.
Proton is a good company to use for certain threat models for example.
although they might log your IP and turn it over to the feds.
I don't want to see LN scaling with surveillance tech either.
but this isn't the way to educate people about it.
Proton is a company which has been the public face of "privacy on the internet" for a zillion years.
LightSpark is a company that six months ago was selling itself as a "compliance" solution for Lightning.
These are not the same thing.
LightSpark is also hiding behind all of the (maybe formerly) trusted brands like Blitz and Wallet Of Satoshi and Cake. If you visit any of those websites (cake, wos, blitz), they do NOT tell you prominently that there is this one company in LA (LightSpark) who is getting all of your data. It's sketchy. Sketchy things should be discussed, as we are now doing....
fair.
Use a vpn?
So if a US firm collects all the data of LN users it's not a problem but if Mossad were to do the same, it becomes a problem? I love the logic
when you create ANY wallet it connects to a bunch of default nodes. nodes that aren't yours and know your IP address when you sync.
you know that, right??
maybe you would like to suggest better default wallet behavior to them.
I don't. LN is a spending layer for me with like 50 bucks on it.
this behavior is true for every wallet I can think of.
you install Stack and create a monero wallet,
it immediately connects to Stacks node and knows your IP address.
this is normal behavior. we dont holler "surveillance"about it usually.
dude he's just talking about their LN integration.
it doesn't have anything to do with Monero.
Possibly. Let's say LightSpark's buddies at Mossad (or wherever) hand David Marcus a list of I.P. addresses, and say: "give us all activity associated with these I.P. addresses."
LightSpark knows that at 64.287.213.41 (or whatever), there is a Cake user, who transacted once over Lightning.
They know it's a Cake user, and Cake users are also known to use Monero.
So, sure, it's not a smoking gun.
But the idea that you're using the same app to transmit a privacy coin while at the same time sending constant IP traffic to "the narcs" at LightSpark... that seems insane to me.... why would you do this?
yes I don't use Cake wallet either, never have.
but that's a helluva stretch.
"Mossad is gonna suspect you are a Monero user!" π₯±
Monero is supposed to be useful for privacy.
Isn't it fair to warn people who are using Monero on an app which happens to ping LightSpark's servers whenever a lightning payment is sent or received?
Seems like an appropriate worry?
Also, how many Cake wallet users (or Blitz, or Wallet of Satsohi) actually understand that their I.P. addresses are going to LightSpark?
I bet if you asked 10 of them randomly, none of them would know.
Contrast this, say, to CoinOS. How many CoinOs users know that CoinOs gets to see their I.P. address? All of them know it. It's obvious.
Sure. They should know.
and even more important, if your payments are that sensitive you need to know about network security.
