reply on: Coinos autowithdrawal exploit \ stacker news ~lightning

pull down to refresh

151 sats \ 4 replies \ @ek OP 8 Jun \ parent \ on: Coinos autowithdrawal exploit lightning

Oof, so this means their nsec is compromised?

Also:

banner changed: cached -> new
logo changed: cached -> new

Note that for some reason the new ones are hosted at coinos.io/api/public/ so I'd assume at this point that the public API has been defaced.

0 sats \ 1 reply \ @optimism 8 Jun

full cached kind 0 from njump, for archiving purposes:

{
  "id": "24e76f5140b6f49cbea7cb12c7b2bcab8d7e1e8f3153d6a600eaab160ef97e14",
  "pubkey": "ba80990666ef0b6f4ba5059347beb13242921e54669e680064ca755256a1e3a6",
  "created_at": 1733706298,
  "kind": 0,
  "tags": [],
  "content": "{\"name\":\"Coinos\",\"username\":\"coinoswallet\",\"display_name\":\"Coinos\",\"displayName\":\"Coinos\",\"picture\":\"https://coinos.io/icon-512x512.png\",\"website\":\"https://coinos.io\",\"about\":\"The easiest way to get started with bitcoin. Coinos is a free and open source bitcoin web wallet.\",\"nip05\":\"coinos@coinos.io\",\"lud16\":\"coinos@coinos.io\",\"pubkey\":\"ba80990666ef0b6f4ba5059347beb13242921e54669e680064ca755256a1e3a6\",\"npub\":\"npub1h2qfjpnxau9k7ja9qkf50043xfpfy8j5v60xsqryef64y44puwnq28w8ch\",\"created_at\":1730935217,\"banner\":\"https://m.primal.net/MqlY.png\"}",
  "sig": "375f7d557c538add5bbb35f51ad8132fd0e23feb156d56683fe069aa0611eb25fb57710aa3a2f4db659f9292e6311fb18f27c770fe242374e4ac47c9a9f1ba24"
}

0 sats \ 0 replies \ @optimism 8 Jun

Kind 0 now changed to the following at 2025-06-08T22:30:18Z:

[
  "EVENT",
  "cn",
  {
    "content": "{\"lud16\":\"coinos@coinos.io\",\"picture\":\"https://coinos.io/images/icon.png\",\"about\":\"\",\"name\":\"coinos\",\"banner\":\"\",\"display_name\":\"Coinos\",\"displayName\":\"Coinos\",\"website\":\"https://coinos.io\",\"nip05\":\"\"}",
    "created_at": 1749421818,
    "id": "1d3af9ce34e70a13e5e4b81a9eb207e526af35c3b5673cda3301bb2cec870000",
    "kind": 0,
    "pubkey": "ba80990666ef0b6f4ba5059347beb13242921e54669e680064ca755256a1e3a6",
    "sig": "f91ce30ed0e70cca71f189b16b0fba9cd48628cbcd4a9bec9f3e1a54075c2fb2d4f23c114b901185c7d699d42aaef97a85b33f439a303d985dd78e39c774384d",
    "tags": []
  }
]

50 sats \ 0 replies \ @optimism 8 Jun

Potentially, yes.

Edit: especially because the new NIP-05 addr is defunct - 404 (don't try it w/o tor.)