Recently I was called by someone pretending to be Coinbase support, trying to steal bitcoin. I decided to turn the tables on him and ask him about being a scammer (Junseth style) - and he opened up in a big way. Presenting: To Catch a Scammer 🕵️‍♂️

The best way to ensure that all bitcoin doesn't get captured in legacy financial system vehicles is to ensure that people want to use bitcoin as more than a store of value. Number go up thanks to tradfi adoption is fun, but we can't lose sight of the bigger picture. Thinking about this in context of the ETF options and the Saif/Saylor discussion from last week.

HOW TO SPOT PHISHING IN THE WILD Our team has noticed a significant uptick recently in phishing attempts on Casa members, friends, and even us. Phishing is when a scammer contacts you in an attempt to get you to give up precious information, such as login credentials or even a seed phrase. These messages can come via email, DM, or even phone call. These attacks can sometimes be sneaky good at spoofing legitimate brands you trust. Here’s a breakdown of some emails I received and how you can detect phishing under the hood. A practiced eye will catch this phishing email, but someone less aware might not. And of course you want to click immediately to see the "Huge Risk of Stablecoins!" The biggest sign is that the attachment looks weird in the Superhuman email client. When I hovered over the attachment, it turned out to be an external link! This one is harder to catch in Gmail. The attachment looks pretty normal. So you look for other signs: - Do I know the sender? (I don't) - Why forward me an email with no text? Weird. - The message in the body of the original email is a bit weird, bad grammar/punctuation. Once you get a whiff of phishy: PAUSE, don't click things. Here's the trick most people don't know about, and how you can verify whether an email is risky. Go to the Gmail side menu on the email itself, click on "Show Original." Then check the SPF, DKIM, and DMARC fields. If any of them say "FAIL," run away. Some companies haven't set this up yet but it's still a good test for most emails, especially if you don't know the sender. And in all scenarios, even if those things all PASS — if something seems a bit off or you don't know the sender, don't download attachments or click links. Here's another example I got this week. All 3 fields were PASS, but I don't know who this is and it looks phishy so: BOOM, REPORTED. Stay safe out there — there are a lot of people getting targeted for their bitcoin right now. Here are a few other handy tips to avoid taking the bait: - Don't trust unsolicited communications - Screen calls from unknown numbers - Verify claims about account issues yourself - Never share a seed phrase online or over the phone If you have more questions or want help protecting against this stuff, our team at Casa can help. @Casa is not just about Bitcoin Security. We're about Security for Bitcoiners. #security #nostr

GM 🌅 What are the hardest parts of Nostr to use (for you specifically)? #asknostr #nostr

We are seeing a huge uptick in phishing attempts on teammates, customers, friends...shift to max skepticism mode to protect yourself - Don't answer calls from unknown numbers - Don't click things in emails from unknown people - Always verify claims about account issues yourself

Keepin’ the Casa referral train rolling

Technical #nostr question - I frequently see weird loading bugs in the Primal UI where it won't fully load something like followers, responses, likes, etc. Or it will show me "new" notifications or messages that I've already seen. Is this a front end problem (Primal), or a backend problem (dealing with relays)? Like how architecturally deep does this problem go? cc @JeffG @rabble or any other technical people I've followed recently

GM 🌞 I've been watching the @Nostriga videos and definitely getting more Nostr pilled #nostr

Second week in a row of all time high new signups for Casa Standard membership 🔥 People are realizing Casa Standard is ridiculously great value: - Casa Inheritance - Insanely good UX w/Yubikey - Only $250/yr - If you get referred, 3 months off your 1st yr (DM me for my code)

If you've been wanting to check out the Casa + Yubikey integration, here's your chance - For the next 24 hours if you sign up for a Casa Standard membership with the code COOLKEYS we'll send you a free Yubikey! - 2 of 3 multisig w/Yubikey - Casa Inheritance - Only $250/yr

OH from a Casa Advisor: "There are two moments that are pure magic when working with clients. 1️⃣ The first is the moment they first move #bitcoin to self custody from an exchange. 2️⃣ The second is when we set up Sparrow wallet as a Sovereign Recovery wallet, and they see all of their Casa transactions and balances show up. They are blown away by the fact that they can see and access their bitcoin completely without Casa." This is perhaps the most powerful part of Casa. It's why private keys are freedom tech. You hold the keys, you control what they secure. Casa doesn't control your bitcoin, so if we disappear, your bitcoin doesn't.

GM 🌅 Been getting DMs on X about the Casa referral program all weekend. Time to bring this train over to the Nostr crew New referral program is ridiculously good: - 3 months off your first year - Casa Inheritance included - YubiKey UX for storing a key is amazing - No KYC, global availability - Only $250/yr DM me for my ref code + a dose of peace of mind 🧘‍♂️

GM 😎 Asked Grok to make a picture of someone "moving to the brave new world of nostr and away from X" and here's what I got. Nothing to do with either platform but it's a nice pic.