GM #2 🇦🇷

These are so funny but also good 👍

⚠️Nostr practical security — attack vulnerabilities ⚠️

Researchers’ quote: " Our results on Nostr show that their use of cryptographic technologies is simple and immature, showing a sharp difference from the modern messaging applications that the research community has scrutinised.We think there is a significant lack of understanding on the secure design and analysis of distributed SNSs: what security property should be set, and what about the security of popular growing services other than Nostr, such as Mastodon and BlueSky? "

A new research paper (Aug 2025) analysed Nostr and found basic cryptographic and design weaknesses that allow attackers to abuse the protocol in ways that real users and services should be concerned about.

👉In plain terms: attackers can trick clients and servers, steal funds or impersonate users in practical scenarios unless fixes are applied.

👉Key impacts everyone must know 1) Financial risk — attackers can hijack or manipulate keys or requests, causing loss of funds (wallet integrations, invoice relays, LN payflows).2) Account and reputation risk — impersonation and message forgery can damage user identity, enable scams, or undermine trust models.3) Ecosystem availability and privacy risk — attacks can de-anonymise users or flood/poison relays, degrading service and exposing metadata.

👉Call to action for developers and users

- Developers: audit signing and verification flows, wallet integrations, relay filtering and threat models; prioritise fixes for key handling and message-authentication weaknesses.

- Users: assume higher risk for money-related actions; avoid new integrations until maintainers publish mitigations; verify payments and identity out-of-band.

Looping in relevant parties below. Regardless of whether the source is trustworthy, the attacks described are worth investigating.

@fiatjaf @Vitor Pamplona @Damus @Sedd

Link to the research listing (paper referenced): 👉 https://eprint.iacr.org/2025/1459.pdf

#asknostr #plebchain #plebs #nostr

⚡️🇪🇺 NEW - ECB Governing Council has approved the transition to the next phase of the digital euro project.

The ECB says a digital euro would help preserve freedom of choice and privacy while strengthening Europe’s sovereignty and resilience.. https://blossom.primal.net/77b737a1ccef20430ffa31ba75574878426ebb9610deac2510640a9bd6ae155c.mp4

Paying in Thailand with Lightning

- Paying direct to merchants on nprofile1qqsra2ey033mkdwl5w8q0jss9ak69zafh82xsuvhwsaauw3trkq2amgpz9mhxue69uhkummnw3ezuamfdejj7qgcwaehxw309anxjmr5v4ezumn0wd68ytnhd9hx2tck28qzu

- Travala for flights and accommodation

- nprofile1qqsdlpj77jpsf944q8htmzph0jg02g2xn4ru2wvhxq8zyk4trv5myeqpr9mhxue69uhkummnw3ezu7n9vfjkget99e3kcmm4vsq3gamnwvaz7tmjv4kxz7fwv3sk6atn9e5k7q9t640 for groceries and fuel vouchers

- nprofile1qqs0nm9kjzthrt64j2vy6n4ll9yr374raf3jm0akqpfktg7szftwvygppemhxue69uhkummn9ekx7mp0qywhwumn8ghj7mn0wd68ytnzd96xxmmfdejhytnnda3kjctv9u3kjqtv for QR payments

- 2fiat for card payments

What else?

⚡️🇺🇲🇨🇳 NEW - Elon Musk: China pould produce dolar panels to power ALL of US in 18 months https://blossom.primal.net/46fd038b24073d48206a4d17bbf62556453c798caeb28fe736663511b46f7884.mp4

ALL COUNTRIES ARE CORPORATIONS (BUSINESSES) UNDER THE UNIFORM COMMERCIAL CODE. 🌞

野焼きの煙とかもたまらん

Rizful.com just sent 10 zaps for the Plebs vs. Zombies winners!

Congratulations to all the champions of the @Plebs vs. Zombies October 2025 Top Zombie Challenge! 💀⚡️

PRIZE WINNERS:

🥇 1st (42,000 sats): @Tico 🇨🇷 - 2,935 zombies!

🥈 2nd (21,000 sats): @Worlds Gone Mad - 2,261 zombies!

🥉 3rd (14,000 sats): @The Bitcoin Street Journal - 1,466 zombies! Prize generously donated to: @corndalorian 🙏

🏅 4th (8,400 sats): @HavelFun - 1,429 zombies!

🏅 5th (4,200 sats): @Squirrelfriend - 1,281 zombies!

🎖 6th (2,100 sats): @Dan Wedge - 675 zombies!

🎖 7th (2,100 sats): @IntuitiveGuy☯️ - 645 zombies!

🎖 8th (2,100 sats): @wip - 439 zombies!

🎖 9th (2,100 sats): @jaquesbody - 408 zombies!

🎖 10th (2,100 sats): @₿33Zy ₿ - 384 zombies!

💰 Total: 100,100 sats being distributed!

Thank you to everyone who participated in making Nostr cleaner and zombie-free!

煙がね 好きなんですなぁ

俺は副流煙好きです

Alexa play Blame it on the Bossanova!!!#happyhalloween 🎃 🍹💃

(This one is niche but if you get the reference you have my heart forever🤍) https://blossom.primal.net/59c9840a00ee9501ed1848029eff8e786d902d4905487302846409de3f576aa1.mov

実家帰って俺はやはりこの父親の子供やなと言う気持ちになるやつ

18mgがどんなもんかわからんやつ

⚡️💬 NEW - Elon Musk announces "X Chat," an encrypted messaging app using peer-to-peer encryption similar to Bitcoin.

He promises no advertising or data sharing for his messaging service.

"At X, we simply rebuilt the entire messaging system to create what we call 'X Chat.' (...) It uses a peer-to-peer encryption system, much like Bitcoin. It's a very good encryption system; we're testing it thoroughly," said Elon Musk on "The Joe Rogan Experience" podcast.

The app aims to compete with WhatsApp and Telegram by offering enhanced privacy and security.

Full day in the life in the nprofile1qqs254dy0xkkjdxsl4u08k7cs52u689q67s3pqfwwyfcp4va7avcjdgpz3mhxue69uhhyetvv9ujuerpd46hxtnfduqs6amnwvaz7tmwdaejumr0ds642tdh

Local food, nature, horrible surf 😉, growing community, & Bitcoin is money.

Can’t wait for more of y’all to come through. PV https://blossom.primal.net/04e5b482e60f7da3d8a935a08763b876c8df8ed6031ded537e950e5fe6830b4f.mov

⚡️👀 NEW - Soon you'll have to scan your eyeballs to play your favorite games!

World ID identity verification technology is being integrated into games such as FIFA, NFL, and Pudgy Penguins, with the aim of distinguishing human players from bots.

Mythical Games has stated that it will leverage "Proof of Human" digital identity technology to separate bots from humans, among other things.

"While bots have their place in video games, they can also be used to manipulate the game economy, gain an unfair advantage, and take rewards that should go to human players."

延々自作鶏胸肉ジャーキー食ってる

ぺぇの口が悪い的なことかと