reply on: Dark-LN Releases Preimage Stealer \ stacker news ~bitcoin

pull down to refresh

0 sats \ 3 replies \ @faithandcredit 18 Nov 2022 \ parent \ on: Dark-LN Releases Preimage Stealer bitcoin

This tool allows you to steal funds from nodes that attempt to pay an invoice a second time after the first succeeds.

Paying an invoice a second time has to be a mistake most of the time. If thats the case you made a tool to steal sats from people who make this mistake? What im missing

7 sats \ 1 reply \ @0330830bf9 18 Nov 2022

Conceivably, this could be combined with an invoice replay attack in niche situations where the invoice is being presented by a 3rd party, but either the destination is validated, or the skimmer wants to be discrete.

If you're using an LNURL bridge for example, this would be reason to have a short TTL on your invoices.

10 sats \ 0 replies \ @faithandcredit 18 Nov 2022

Thanks for the comment, but im kinda sad that i barely understood what you are saying but i upvoted anyway

0 sats \ 0 replies \ @super_testnet 19 Nov 2022

I've done it when I get a payment that takes too long. I test out new lightning wallets all the time, and not all of them are very reliable. So when I try to pay an invoice, it often gets "stuck" for several minutes trying to pay without either failing or succeeding -- just "pending." When that happens I usually switch to a different wallet and try to pay the same invoice with that one. In other words, without making a mistake, I try to pay the same invoice twice. I did not consider that I can lose sats doing this but now I will take that into consideration.