Update: The Coinkite scam letters go to secure.portal-coldcard.com and they want you to enter your PIN and seed for the "post-quantum" security update. So in addition to skimming customer data in the supply chain, they're also buying COLDCARDs to put the stolen PIN/seed into. @ICQ you can probably track these assholes down.

Open to ideas about where the leak is here. We need to figure it out and get it plugged if it's on this end. These are possibilities (some very unlikely): - Coinkite actually sent this - Coinkite shipping department skimming addresses - FedEx people skimming addresses - Customs people skimming addresses - Credit card people skimming transaction data - Proton account compromised - SimpleLogin account compromised - Local network/router compromised - Up-to-date Mac PC compromised Somebody has to know: 1. The customer's address 2. That the customer purchased a COLDCARD 3. What a COLDCARD is That's a small group of people. View quoted note →

@ICQ This is the letter. A friend received it. They actually got 2 with 2 different reference numbers. Their email on the purchase was with Proton and is secure as far as we can tell. The QR in the bottom is a shortened link and I'm not going to open it. The address is the address they shipped a COLDCARD to. They haven't even opened or initialized the device, as it's a spare. The envelope has a postmark from Metroplex, MI with a physical hand-applied US stamp. We're trying to figure out who in the chain could put this together and send a targeted physical letter. This is a very passive hodler with no social media presence or really any of the typical exposure points. View quoted note →

@ICQ Are you guys sending out letters about post-quantum upgrades to COLDCARD?

For non-Amethyst users: View quoted note → View quoted note →

RIP the hamradio hashtag. @Vitor Pamplona is it possible to process hashtag follows AFTER relay blocking? Right now the tag follow is overriding the relay block.