A Vulnerability was recently found in musig implementation of nBitcoin.Secp256k1. The vulnerability was in the nBitcoin library which BTCPay Server uses (but is unlikely to affect users). @Rob Hamilton , @craigraw , @Carman and @DETERMINISTIC OPTIMISM 🌞 share their thoughts in BR076.

Hezbollah is hit by a wave of exploding pagers in sophisticated remote attack. What does this tell us about the security and trust necessary in supply chains? @Rob Hamilton and @DETERMINISTIC OPTIMISM 🌞 share their thoughts in BR076.

Recent #Bitcoin Core vulnerability disclosure demonstrates that pre v24.0.1, a DoS attack could remotely crash nodes by spamming them with low-difficulty header chains, affecting nodes storing blockchain headers in memory. @DETERMINISTIC OPTIMISM 🌞 , @Rob Hamilton and @craigraw give their take in BR076.

Many are beginning to experience the potential of nostr for social media, but have you heard about Nostr Wallet Connect? NWC allows you to control your LN wallet through nostr. Are nostr authenticated e-commerce checkouts the next big feature? @Carman thinks so. [BR076].

Timelocks allow #bitcoin hodlers to introduce time as an element into their bitcoin security. In BR076, @Rob Hamilton gives a broad level overview of the two types of timelocks, and how they work.

Is it time for Github to go nostr? ngit is a command-line tool to send and review patches via nostr:

GitWorkshop.dev

Decentralized github alternative over Nostr

@DETERMINISTIC OPTIMISM 🌞 , @Rob Hamilton and @Carman discuss the potential benefits of a decentralised GitHub .

🚀 BR076 - Sparrow, AnchorWatch, Exploding Pagers, Bitcoin Core Spam Attack, Ark goes mainnet, NBitcoin Secp256k1 Vulnerability + MORE ft. @craigraw , @Rob Hamilton , @Carman & @DETERMINISTIC OPTIMISM 🌞 Listen to the episode: ➡️ Fountain:

Bitcoin.Review Podcast with NVK & Guests • BR076 - Sparrow, AnchorWatch, Exploding Pagers, Bitcoin Core Spam Attack, Ark goes mainnet, NBitcoin Secp256k1 Vulnerability + MORE ft. Craig, Rob & Ben • Listen on Fountain

➡️ Spotify:

Spotify

BR076 - Sparrow, AnchorWatch, Exploding Pagers, Bitcoin Core Spam Attack, Ark goes mainnet, NBitcoin Secp256k1 Vulnerability + MORE ft. Craig, Rob & Ben

Bitcoin.Review Podcast with NVK & Guests · Episode

➡️ Amazon:

BR076 - Sparrow, AnchorWatch, Exploding Pagers, Bitcoin Core Spam Attack, Ark goes mainnet, NBitcoin Secp256k1 Vulnerability + MORE ft. Craig, Rob & Ben-Bitcoin.Review Podcast with NVK & Guests

I'm joined by guests Craig Raw, Rob Hamilton and Ben Carman to go through the list.Housekeeping 00:01:34 Big COLDCARD Q news 00:01:46 Understanding...

➡️ Apple:

Apple Podcasts

BR076 - Sparrow, AnchorWatch, Exploding Pagers, Bitcoin Core Spam Attack, Ark goes mainnet, NBitcoin Secp256k1 Vulnerability + MORE ft. Craig, Rob & Ben

Podcast Episode · Bitcoin.Review Podcast with NVK & Guests · September 25, 2024 · 2h 1m

➡️ YouTube: Shownotes: ➡️ Website:

🎙Bitcoin.Review Podcast

Bitcoin Review Podcast BR076 - Sparrow, AnchorWatch, Exploding Pagers, Bitcoin Core Spam Attack, Ark goes mainnet, NBitcoin Secp256k1 Vulnerability + MORE ft. Craig, Rob & Ben

I’m joined by guests Craig Raw, Rob Hamilton and Ben Carman to go through the list.

➡️ Substack:

BR076 - Sparrow, AnchorWatch, Exploding Pagers, Bitcoin Core Spam Attack, Ark goes mainnet, NBitcoin Secp256k1 Vulnerability + MORE ft. Craig, Rob & Ben

I’m joined by guests Craig Raw, Rob Hamilton and Ben Carman to go through the list.

Rob explains the paradigm shift in what AnchorWatch is doing by leveraging miniscript. 👇

Signing transactions is generally very fast from a consumer experience standpoint. Does this mean that we have wiggle room to do additional cryptography in order to mitigate against nonce attacks? @Rob Hamilton thinks so, as he explains in BR073.

How do we move forward and create superior user experience whilst maintaining and prioritizing security when it comes to using signing devices? @DETERMINISTIC OPTIMISM 🌞 discusses this question with @craigraw in BR073.

Most real world high value attacks use a combination of techniques. Several tools are normally combined to pull off the attack. @Rijndael and @DETERMINISTIC OPTIMISM 🌞 discuss how some of these attacks play out, and the level of sophistication that can be involved.

What could signers do to address some of the shortcomings of signing a transaction? @DETERMINISTIC OPTIMISM 🌞 goes *reverse* feature request on @craigraw , discussing how the improvements on the hardware side could complement the UX of the client (whilst maintaining security!)

⚠️ RAMBO Attack Steals Sensitive Data from Air-gapped Systems 🔒 A new exploit manipulates RAM to transmit sensitive data through electromagnetic waves. @DETERMINISTIC OPTIMISM 🌞 and @Paul discuss the attack, and how we should consider it when it comes to #bitcoin security, in BR075.

Different hardware has different tradeoffs when it comes to #bitcoin security. @DETERMINISTIC OPTIMISM 🌞 and Lloyd Fournier discuss some of those tradeoffs when it comes to ESP32 in BR073.

#COLDCARD just got a firmware upgrade! ✅XOR from Seed Vault ✅Seed scanning from SeedQR ✅Unsorted multisig ✅Airgapped multisig coordinator with BBQr ✅Share any file from SD card via QR/BBQr ✅Optimizations and speed ✅libsecp256k1 bumped to latest 0.5.0 ✅Improvements in signature grinding algo ✅Improved side-channel protection @DETERMINISTIC OPTIMISM 🌞 of @Coinkite (old npup) talks through the latest release in BR075.

🚀 BR075 - Bitcoin Core, COLDCARD, BitKit, RAMBO Attack, Chinese Hardware Backdoors, Nostr Censorship?! + MORE ft. @Paul, @Rijndael & @DETERMINISTIC OPTIMISM 🌞 Listen to the episode: ➡️ Fountain: https://fountain.fm/episode/iUJfWvpxPGjm6Z7AUsy0 ➡️ Spotify:

Spotify

BR075 - Bitcoin Core, COLDCARD, BitKit, RAMBO Attack, Chinese Hardware Backdoors, Nostr Censorship? + MORE ft. Future Paul & Rijndael

Bitcoin.Review Podcast with NVK & Guests · Episode

➡️ Amazon:

BR075 - Bitcoin Core, COLDCARD, BitKit, RAMBO Attack, Chinese Hardware Backdoors, Nostr Censorship? + MORE ft. Future Paul & Rijndael | Bitcoin.Review Podcast with NVK & Guests Episode on Amazon Music

I'm joined by guests Future Paul & Rijndael to go through the list.Full shownotes on the link below.Housekeeping00:03:17 Coinkite launches a dedica...

➡️ Apple:

Apple Podcasts

BR075 - Bitcoin Core, COLDCARD, BitKit, RAMBO Attack, Chinese Hardware Backdoors, Nostr Censorship? + MORE ft. Future Paul & Rijndael

Podcast Episode · Bitcoin.Review Podcast with NVK & Guests · September 11, 2024 · 2h 4m

➡️ YouTube: Shownotes: ➡️ Website:

Bitcoin Review Podcast BR075 - Bitcoin Core, COLDCARD, BitKit, RAMBO Attack, Chinese Hardware Backdoors, Nostr Censorship?! + MORE ft. Future Paul & Rijndael

I’m joined by guests Future Paul & Rijndael to go through the list. Listen on your favorite podcast app: Housekeeping 00:03:17 Coinkite launches ...

➡️ Substack:

Bitcoin Review Podcast BR075 - Bitcoin Core, COLDCARD, BitKit, RAMBO Attack, Chinese Hardware Backdoors, Nostr Censorship?! + MORE ft. Future Paul & Rijndael

I’m joined by guests Future Paul & Rijndael to go through the list.

Is the dawn of nostr censorship here?! NVK and guess discuss the recent development of @HODL being tagged for hate speech on nos social. And ask the important question... when Commie Meter™? 👇

Confused about Florestra, ZeroSync, Utreexo? @Rijndael gives a fantastic TLDR on what these technologies are, and how they are reducing hardware requirements of validating nodes, in BR074.

In light of the recent successful extraction of Intel SGX Fuse Keys, is it time to steer clear? @Rijndael and @DETERMINISTIC OPTIMISM 🌞 give their take, and stress the importance of combining various security measures in BR074.

The Mempool Open Source Project® v3.0.0 recently dropped 🚀 Includes exciting new features: Mempool Accelerator, Mempool Goggles, "pizza tracker" UI, and much more. @DETERMINISTIC OPTIMISM 🌞 and @Rijndael discuss the update in BR074.

Ever wondered what it takes to build a #bitcoin hardware wallet? @DETERMINISTIC OPTIMISM 🌞 and Lloyd Fournier go into some of the logistics involved, in BR073.

🚀 BR074 - Fountain Podcasting 2.0 on Nostr, SGX Key Extraction, Nunchuk, Mempool, Floresta, + MORE ft. @Oscar Merry, @Rijndael & @DETERMINISTIC OPTIMISM 🌞 Listen to the episode: ➡️ Fountain: https://fountain.fm/episode/meY9nyt70HnirLta6MZC ➡️ Spotify:

Spotify

BR074 - Fountain Podcasting 2.0 on Nostr, SGX Key Extraction, Nunchuk, Mempool, Floresta, + MORE ft. Oscar Merry & Rijndael

Bitcoin.Review Podcast with NVK & Guests · Episode

➡️ Amazon:

BR074 - Fountain Podcasting 2.0 on Nostr, SGX Key Extraction, Nunchuk, Mempool, Floresta, + MORE ft. Oscar Merry & Rijndael-Bitcoin.Review Podcast with NVK & Guests

I'm joined by guests Oscar Merry & Rijndael to go through the list.Full shownotes on the link below.Housekeeping00:01:15 Calling for Ham radio gues...

➡️ Apple:

Apple Podcasts

BR074 - Fountain Podcasting 2.0 on Nostr, SGX Key Extraction, Nunchuk, Mempool, Floresta, + MORE ft. Oscar Merry & Rijndael

Podcast Episode · Bitcoin.Review Podcast with NVK & Guests · August 28, 2024 · 1h 44m

➡️ YouTube: Shownotes: ➡️ Website:

🎙Bitcoin.Review Podcast

Bitcoin Review Podcast BR074 - Fountain Podcasting 2.0 on Nostr, SGX Key Extraction, Nunchuk, Mempool, Floresta, + MORE ft. Oscar Merry & Rijndael

I’m joined by guests Oscar Merry & Rijndael to go through the list.

➡️ Substack:

BR074 - Fountain Podcasting 2.0 on Nostr, SGX Key Extraction, Nunchuk, Mempool, Floresta, + MORE ft. Oscar Merry & Rijndael

I’m joined by guests Oscar Merry & Rijndael to go through the list.

Oscar discusses with NVK how Fountain is seeking to onboard the podcasting industry to nostr, bringing cross app comments and boosts to podcasting 2.0. 👇