🚨 ledger library confirmed compromised and replaced with a drainer. wait out interacting with any dapps till things become clearer.
pull down to refresh
pull down to refresh
🚨 ledger library confirmed compromised and replaced with a drainer. wait out interacting with any dapps till things become clearer.
Stuff like this will drive pre-coiners to BlackRock and Fidelity, unfortunately.
Many people are gonna go with the ETFs. They will have to learn their lessons.
Can you be more specific about which lessons these types of investors will learn?
When the rug pullings start.
How many rug pulls have happened with the GLD etf?
They don't care about people holding an ETF, they care about people using bitcoin as money. No one will be avoiding sanctions with their Blackrock Bitcoin ETF shares. They will be safely controlled by a fully compliant and regulated entity. No worries there. That's why Lizard Warren has her panties in a knot about self-custody. So you're right, gold and bitcoin ETFs are probably safe for the foreseeable future, because that's exactly what they want: everyone owning a derivative instead of the real thing. The fight is over self-sovereignty, and ETFs are a win for them in that respect.
Exactly
I'm not trying to dodge the question. I don't know actually. Do you know? Is it more than zero?
To my knowledge, it's 0.
I think you misunderstand what I'm saying. The US gov controls the system which you would be trusting. That's what I'm saying. When it gets bad, you will not be able to access your bitcoin.
And they will learn the same lessons
Which same lesson? ETF investors won't have to worry about these custodial issues. They'll just hold shares in a brokerage account.
ETFs don't hold funds, its just a claim of a third party to another third party, lots of fingers in that pie on the back end and loads of room to stuff up key management, then what?
That company is so compromised and/or inept. From another tweet:
ELI5 version:
https://m.stacker.news/8054
"The @ledgerhq/connect-kit-loader allows dApps to load Connect Kit at runtime from a CDN so that we can improve the logic and UI without users having to wait for wallet libraries and dApps updating package versions and releasing new builds."
This looks like an extremely dangerous approach now. Connect-kit-loader trusts whatever the CDN throws at your dApps. So when connect-kit is comprised, all downstream dApps are automatically exposed.
Here is a list of affected downstream projects: https://sourcegraph.com/search?q=context:global+%40ledgerhq/connect-kit-loader&patternType=standard&sm=0&groupBy=repo
Many familiar names there and I stopped scrolling after seeing wagmi and MetaMask SDK.
Also, revoke.cash is compromised.
https://nitter.net/RevokeCash/status/1735282669808717958?t=bnVdCMZlMyAkuuTaFokaaA
@k00b @DarthCoin @supertestnet @grayruby @Onions @ekzyis
need to look into this when i have time but
sounds like this doesn't affect us? since we're not a dApp?
deleted by author
The maxis were right again.
deleted by author
deleted by author
oh sorry, thought you are someone else, lol
similar nym
lol np
The alleged drainer address:
https://etherscan.io/address/0x412f10AAd96fD78da6736387e2C84931Ac20313f
Looks like it's slurped up +$200k so far.
So today Tether freezed the account as it was a hacker account, tomorrow a country or someone that says something they don't like.
Dapps? Dude, get off that crap. Bitcoin only
👀👀👀 could....of...sworn...this....was...
Foreseen
ACINQ uses Ledger for their lightning multi-sig
Lol who uses dapps and why would they think a tethered signing device is going to make it better than a browser, you were already cooked to begin with, ledger is doing these people a favour by allowing them to get rugged
The ledger issue is now fixed.
To make sure you don't have the malicious library cached, go to https://cdn.jsdelivr.net/npm/@ledgerhq/connect-kit@1 and ensure the version is 1.1.8.
If it's not, clear your cache. chrome- F12> Chrome Developer Tools > Application tab > Storage in left tree> Clear site data.
=> dup: #352110
mh, interesting, you posted this at
2023-12-14T13:42:43.847Zand this here was posted at2023-12-14T13:43:01.081Zso only a few seconds apart.i wonder why this got a lot more sats than yours.
maybe because you only posted a (twitter, not even nitter) link and "some" people complain here they don't want to see links, they want to see original content where the OP provided some context?
so I wonder if @IgnaciobTato just gamed this sentiment since they created a "discussion post" but basically just posted links, lol
but you even posted this in the right territory (at least the one in which i would have posted this): ~bitcoin instead of ~privacy
so really not sure what happened here, maybe others can add their thoughts on this :)
At the end of the day, it's the people who decide whom to reward. I'm okay with it. By the way, it would be cool if it were possible to remove the flag :)
which flag? your post isn't flagged as outlawed
After downvoting, it's not possible to revert
i think you are talking about this ticket
yes
Regarding the flags, what happens with the votes on Meme Monday and Fun Facts?
wdym?
downvotes on meme monday and fun fact shouldn't be possible. I haven't tried it, but it must affect the voting.
why not?
The way I see it, it doesn't make sense, because it's a vote for the better. It's the same as voting for the best footballer, it doesn't make sense to give downvotes to a certain player. Besides, this possibility could be used to manipulate the results.
your reasoning makes sense but there might still be comments that aren't even related to Meme Monday in Meme Monday so i think flagging should still be supported there
to implement your request, we would need to be able to detect if something is related or not so people can't just post anything since they know they can't get flagged.
but that is an unsolvable problem since if we could do that, we could basically automatically flag stuff, so no need for any flagging at all
makes sense?
My post seems to be 40 seconds earlier. The name of the topic are different. I don't like the embedded post like the other thread. I prefer to Post the original link but also copy the same text. If possible I add my comments. This allows a faster read and discussions. Sometimes I post things like alerts or articles. I cannot be an expert on all topics. I am not troll poster that saturates SN. Fortunatelly, my posts seems to be interesting to the readers and are not abandoned with 0 sats or comments.
deleted by author
deleted by author