Thousands of #Android TV devices come preinstalled with unkillable #backdoors, allowing them to participate in organized #crime and fraudulent schemes. #Cybersecurity firm Human Security has uncovered an interconnected web of #fraud schemes linked to infected Android TV boxes, impacting 200 different device models. Human Security has taken down advertising fraud associated with the scheme and shared manufacturing facility details with law enforcement agencies.
LOL, X has added a new type of ad which appears in the "For You" feed, without the option to like, retweet, block, or report. π€π»
Overcast for iOS
AntennaPod for Android
Podurama for everyPlatform
Not where I live, itβs a 10 mile off road desert trek from the farmstead to a paved highway. Then itβs another 40 miles to town. I like walking but not that much. π€£
Look, I get where you're coming from. The distribution of Bitcoin does seem unfair if you just look at the raw numbers. But we gotta think deeper about this.
First off, Bitcoin is still new. Yeah, early adopters got a bigger piece of the pie. But that's how it works with any new technology. The playing field gets more level over time as more people join in.
And Bitcoin actually gives normal folks a shot at building some wealth. With dollars, you pretty much have to already be rich to get richer. The game is rigged for the elites. But Bitcoin lets anyone anywhere participate and profit. All you need is an internet connection.
I ain't saying Bitcoin will make everyone equal. But it gives a lot more people a seat at the table. The old financial system was like a fancy restaurant where only the rich could afford to eat. Bitcoin is more like a food truck festival where everyone can grab a bite.
So don't sweat the distribution too much. Over time, more coins will get spread around. And the "unbanked" finally get access to financial services. Bitcoin is still a baby. Let's see where this experiment takes us before calling it a failure.
The future is unwritten, bro. Bitcoin is just a tool. What matters is how we use it.
Multiple times.
https://blog.p2pfoundation.net/satoshi-nakamotos-account-hacked/2014/09/09
https://www.forbes.com/sites/kashmirhill/2014/09/16/satoshi-nakamoto-email-hack/
https://www.gawker.com/hackers-take-over-account-used-by-bitcoin-creator-1632227257
https://news.ycombinator.com/item?id=8287905
https://cryptoslate.com/satoshi-nakamotos-account-posts-on-p2p-foundation-forum-likely-hacked/
https://bitcointalk.org/index.php?topic=5378823.0
https://www.reddit.com/r/CryptoCurrency/comments/rq06hc/serious_it_looks_like_someone_posted_from/
π€π»
Guys, I had a thought. Maybe it will work, maybe it wonβt π€·ββοΈ but figured it was worth putting out there.
Do any of you know if a guy named Dr. Shawn Baker is on #nostr?
I used to follow him on Twitter ( https://x.com/sbakermd ) and was checking to see if he is here and could not find him. So I was thinking π maybe if we pick one person a week to #PurplePill π (once they are here is they are not already #OrangePilled π§‘, they will get OrangePilled here just naturally π) and everyone that still has a Twitter account and or an Instagram account can DM that person, so their DMs (or even comments) blow up with Nostr invites from everyone π. We could start with Dr. Shawn Baker
Collective effort often yields better results than working alone.
#AskNostr
If anyone has tips for getting people to jump ship and join nostr, Iβd love to hear them. Iβve tried unsuccessfully to untether many from Elon but I think they are a lost cause.
I might can help. Letβs talk about it. π€π»
A Technical Analysis of the #Nostr Protocol π€π»
#grownostr #security #privacy #analysis
Nostr is an emerging protocol that allows users to publish short messages called "events" in a decentralized, censorship-resistant, and cryptographically verifiable manner. It has the potential to enable privacy-focused social networking and web3 applications.
This analysis examines Nostr's technical design, highlighting key components, vulnerabilities, and areas needing improvement. It is intended for readers with a passing knowledge of cryptography, networks, and blockchain technology. Casual users may find some sections challenging, but I aim to reward patient, focused reading with deep insights into this novel protocol.
# Overview π»
Nostr utilizes digital signatures and public-key cryptography to authenticate events published by users. Users generate a private/public key-pair, registering their public key on the network. This key serves as their identity. Users sign events with their private key before publishing to relays. Relays then distribute the events across the network. Clients can verify event integrity via the signatures.
This high-level architecture offers censorship resistance and verifies event provenance. However, complex challenges emerge when examining Nostr's design through a technical lens.
# Cryptographic Foundations π
Nostr identities are generated as secp256k1 key-pairs. This offers compatibility with external systems like Bitcoin and Ethereum which utilize the same curve. Key-pairs are generated on the client side, ideally using a secure random number generator with sufficient entropy.
Once generated, the key-pair should never be transmitted. The private key in particular must be kept secret. Nostr clients are thus responsible for properly securing keys. Future clients should support encrypted local storage, multi-factor access control, and seed phrase backups. Weaknesses here compromise identity ownership.
All Nostr events are signed with Schnorr signatures using the author's private key. Schnorr offers a space-efficient signing algorithm but relies heavily on random nonce generation. Poor entropy pools during signing open the door to compromise via nonce-reuse.
Fortunately, the nonce is not revealed on-chain, limiting exploitability. Nonetheless, clients should implement RFC 6979 deterministic nonce generation. This eliminates randomness as an attack vector.
# Sybil Resistance π«
Nostr's open design allows anyone to generate a key-pair and immediately participate. There is no imposed cost-of-entry or identity verification preventing Sybil attacks β a weakness compared to systems like Bitcoin.
A single actor could trivially generate millions of identities. Combined with Nostr's re-posting mechanics, this amplifies the potential scale of disinformation campaigns. Similar techniques have been exploited on social platforms like Twitter.
Nostr currently lacks robust Sybil resistance. Possible mitigations include rate-limiting new key generation, requiring Proof-of-Work, and leveraging Web-of-Trust style reputation systems. Careful design is needed to prevent undue centralization.
# Metadata Privacy π
By default, Nostr events are publicly accessible. They contain metadata including the author's public key. Clients can correlate events across relays to profile users. This reduces privacy, especially for less tech-savvy users unaware of the risks.
Future Nostr clients should make pseudonymous and encrypted usage easy. Predefined "personas" with distinct keys, ephemeral keys, mix networks, and metadata stripping should become standard privacy tools.
However, blindly encrypting all content poses discoverability challenges. Search, filtering, and network analysis rely on accessible metadata. There are open research questions around balancing privacy and utility.
# Censorship Resistance π
Nostr's decentralized architecture should make censorship technically challenging. There is no central entity that can eradicate content or ban users.
However, Nostr's relay infrastructure poses centralization risks. A handful of large relays could potentially collude to censor events or de-platform targets. Nostr needs robust incentives for relay operators to prevent oligopolies.
Censorship at the relay level also remains an open challenge. Existing systems like Secure Scuttlebutt explore concepts like relay "matchmaking" and sharding events across diverse relay groups.
# Spam Prevention π¬
Nostr's public nature makes it vulnerable to spam. Computational Proof-of-Work and fee mechanisms have been proposed but neither is foolproof. Clever anti-spam that resists censorship and gaming remains an open research problem.
Basic rate-limiting on new key registration, events published, and introductions sent helps but is trivial to circumvent. More advanced techniques like fees weighted by account reputation, staking mechanisms, and selectively applying Proof-of-Work based on risk factors warrant exploration.
# Secure Key Management π
Nostr's security model depends on users properly managing private keys. If users select weak passwords or store keys improperly, malicious actors can compromise their identities.
This poses an enormous challenge given that most users lack crypto-security knowledge. Nostr clients should implement multi-factor authentication, encrypted local storage, and easy-to-use backups like seed phrases. Usability testing is critical β security mechanisms that seem too complex may be ignored or circumvented by users.
Platforms like Keybase demonstrate the difficulty of making key management accessible. Nostr clients should learn from past efforts while recognizing the uniquely sensitive nature of social networking data.
# Scalability π
Nostr's throughput is limited by its relay infrastructure. Early testing suggests relays can comfortably handle 2000 events per second. Further optimizations like compression, sharding, and efficient routing algorithms will help.
But fundamental scalability limitations remain. Relays are constrained by bandwidth, storage, and real-time event processing. As adoption grows, demand may overwhelm relay capacity. Possible mitigations include sharding the network into relay clusters and introducing client-side caching.
Incentivizing a robust relay network is critical for scalability. Nostr currently lacks effective incentives for operating high-capacity relays. Ongoing research into decentralization-compatible business models is essential as utilization increases.
# Conclusion π¨π»βπΌ
This analysis reveals that while Nostr offers a novel approach to decentralized social networking, complex technical challenges remain. Sybil resistance, metadata privacy, censorship resistance, spam prevention, key management, and scalability all warrant additional research and protocol evolution.
Nonetheless, Nostr represents a promising step forward in an era of centralized platforms and compromised user rights. With transparent analysis of its strengths and weaknesses, collaborative research, and responsible protocol design, Nostr may yet fulfill its aspirational goal of user empowerment. The road ahead will require vigilance, creativity, and a commitment to the open, decentralizing ideals which motivate this project.
Astronomers Without Borders launches "One Eclipse" app for #iOS devices, offering an interactive experience of the 2023 annular solar #eclipse.
Users can access an interactive eclipse map, countdown timer, eclipse simulator, and share their experiences with AWB's #community.
50% of each purchase of the app goes towards supporting AWB's #STEM #outreach projects and eclipse glasses #recycling program.
https://www.space.com/one-eclipse-app-launched-by-astronomers-without-borders
How Joe Biden exits Air Force One. nostr:note1jzcnnr8pfhznyc39pqalsd3uqqfmw2yvl4jvmerccdw3fsahhy2qcmfshd
SELECT 'Exploring vulnerabilities' AS Adventure,
'Uncovering threats' AS Treasure,
'Securing the digital realm' AS Mission
FROM DailyLife
WHERE Passion = 'Cybersecurity'
AND Beard IS NOT NULL;
lol whatβs up with your file system?
good morning #nostr βοΈβοΈ
#coffeechain #plebchain 
150! π