Guide on connecting OpenClaw to any bitcoin lightning wallet

Stacker News

We added bitcoin payments to OpenClaw — which agent should be next? \ stacker news

We just published a guide on connecting OpenClaw to any bitcoin lightning wallet: https://getalby.com/blog/bitcoin-payments-in-openclaw-the-fast-an...

The labor market isn't as dire as the headlines suggest—US layoffs are still at or below pre-pandemic levels, even as AI gets blamed for everything. The real story isn't collapse, but concentration.

OpenAI just announced that ChatGPT can now fill out scanned or photographed paper forms — basically automating the last major holdout of analog bureaucracy. It can read government docs, insurance forms, tax paperwork, etc., understand the fields, and complete them intelligently based on the context you give it. This kills the old pain of manually filling out quirky, non-standard forms. OCR was never enough — it could read text but not grasp intent. Vision LLMs actually understand what the form is asking for. Big implications: - Auto-filled medical intake forms - Government paperwork without copying the same info 20 times - Faster business compliance - Even non-English forms (translated + filled) Downside: Privacy risks when uploading sensitive documents to commercial AI. For Bitcoiners: AI is devouring white-collar busywork at an accelerating pace. The jobs that survive will be those that need real judgment, not just form-filling. Stack sats and stack skills. ⚡

🇺🇸 US Congressman Mike Rulli says "there will only ever be 21 million Bitcoin." "While governments can print unlimited amounts of money, Bitcoin's supply is permanently fixed." Mathematics cannot be hidden, argued against, or denied.

Bitcoin, sound money and sound minds will progress one funeral at a time. Memento Mori, so Memento Vivere.

Energy is the currency of the universe. Time is its ultimate scarcity. Bitcoin is sound money — forged from both.

"If your money isn't sound, it is not reflecting any proof of work. It is not reflecting anything about who should be able to consume, or how much there is available to consume. It's just being corrupted, it's being defrauded, so that certain people get bad price signals. And this will incentivize them and everyone else to literally make economic decisions that appear to be economically profitable, that are actually destroying the society."~ Guy Swann Why is it that 5,000 years of human civilization built monuments and railroads and cathedrals – and we built WeWork and Quibi? Wyatt's case for a return to proof of work in the real economy, then push it further: sound money isn't just nice to have. Without it, the market doesn't break – it never emerges in the first place. And when it loses that property, society rots until it dies. Article: The Bitcoinization of Finance

The Bitcoinization of Finance│Braiins

This book explores how bitcoin will reshape global finance by replacing fiat systems with sound money, and building a fairer, freer financial futur...

"It is not markets that made money possible. It is collectibles, which we now call money, that make markets possible."~ Nick Szabo What if the conventional story of money’s origins is completely backwards? In his first major article in nearly a decade, Nick Szabo weaves a tale of a stolen canoe, a bitter tribal feud, and strings of shells — and uses it to overturn one of economics’ most persistent myths. Did money really evolve from barter… or did it arise from something far older, and far more human? Article: The Fabric of Desires

JAN3

The Fabric of Desires | JAN3

Mist hung low over the Klamath River, softening the redwood shadows into wavering shapes. At first light, word passed quietly between houses: a can...

"They say the ruler is bent, then use the bent ruler to measure the table. They say the clock is broken, then solemnly read out the hour. They say the instrument is false, then ask it, with perfect seriousness, for one final certification. This is, in itself, a form of bondage. To measure gold in fiat terms is, in Jung’s sense, to deny the shadow: to denounce the paper system in public while continuing, in private, to let it decide what counts as value." ~ Craig Tindale 1 BTC = 1 BTC. If fiat is broken, why do we still let it dictate the worth of gold or Bitcoin? Craig Tindale argues that even the fiercest rebels against fiat remain trapped in its grammar — pricing their escape in the very units they claim to reject. But is it really possible to step outside the fiat frame, or does the nature of price itself keep us entangled in ways Bitcoiners haven’t fully confronted? Article: Stepping Outside the Fiat Frame

X (formerly Twitter)

🇦🇺Craig Tindale (@ctindale) on X

Stepping Outside the Fiat Frame: Gold Is What Remains When Money Stops Telling the Truth

🚀 Young Entrepreneur Launch Guide: Florida Edition (AI as Your Co-Founder) Want to start a business fast and cheap? Use AI to move 5-10x quicker. 1. Validate & Plan Test your idea with ChatGPT, Claude, or Grok. Generate customer personas, competitor analysis, lean plans, and financials in hours. 2. Register Smart Form an LLC online through Sunbiz. Get your EIN, local business license, and sales tax permit. Florida has no state income tax — a big advantage for founders. 3. Run Lean with AI AI writes content, designs graphics, runs ads, handles customer service chatbots, automates ops, and analyzes markets. Bootstrap for almost nothing. 4. Fund & Grow Start small, tap into Florida grants and small business programs, then use AI-generated pitch decks to raise capital. Quick Checklist: - Validate your idea with AI this week - Register LLC + set up tax accounts - Set up your AI stack - Land your first 10 customers Florida offers low overhead, no state income tax, and a business-friendly environment for young founders. AI isn’t taking jobs — it’s eliminating the boring work so you can move faster than previous generations. The only real risk is refusing to use it. Who’s launching in Florida? Drop your idea below 👇

Test 2

Test

Bitshala 2026 Learning Cohorts -

Bitshala | A Pathshala for Bitcoin | India, Global South

Bitshala is a grassroot, organic education initiative (a pathshala) led by Indian bitcoiners to provide guidance and resources for new developers s...

Free, structured study cohorts that guide students from learning about Bitcoin to actually building it — progressing from beginner fundamentals all the way to advanced protocol development. Five immersive programs, each requiring 10–20 hours per week over 6–8 weeks, featuring live sessions, practical assignments, and dedicated TA support. Graduates can advance directly into Fellowship programs, where they contribute to real open-source Bitcoin projects with mentorship, or move into immediate hiring opportunities with Bitcoin companies.

Daemon Tools Hit by Suspected Chinese Supply Chain Attack, Kaspersky Says

Technology Org

Daemon Tools Backdoor: Kaspersky Flags Supply Chain Attack - Technology Org

Kaspersky says a backdoor planted in Daemon Tools is hitting thousands of Windows PCs, with a Chinese-speaking group linked to the attack.

The Daemon Tools backdoor came straight from the official website, digitally signed with the developer’s own certificate. It looked and behaved exactly like a legitimate installer — no shady links, no warnings, nothing to raise suspicion. That’s what makes supply chain attacks so insidious compared to phishing: you did everything right and still got compromised. The real question isn’t what you’re about to install next. It’s what’s already running on your machine. That software you installed months ago and forgot about, those tools that launch at startup, the apps you granted permissions to without reading the fine print — any one of them could have been silently updated with malicious code. When was the last time you actually audited what’s running on your devices?

CVE-2026-41940 Explained: The cPanel & WHM Authentication Bypass That Hit 1.5M Servers

CVE-2026-41940 Explained: The cPanel & WHM Authentication Bypass That Hit 1.5M Servers

CVE-2026-41940 explained: how a CRLF injection bypassed cPanel & WHM authentication on 1.5M servers. Root cause, exploit chain, IOCs, and patch gui...

Thousands of businesses went to bed with working websites and woke up completely locked out of their own infrastructure. The administrators who escaped the worst damage had already restricted cPanel and WHM login ports to trusted internal networks only — dramatically shrinking their attack surface before the breach even began. The same principle applies far beyond servers. How many apps on your phone or home computer currently have access to your most sensitive files, location data, or critical permissions? Every unnecessary connection is an attack vector you carry in your pocket or bag — and one you can start eliminating today.

This is a BOLT12 / Lightning Address / LNURL server for your node that combines Nostr identity and zaps into a single product called BOLT12 Pay. There are quite a few different standards for paying people on Lightning right now, and BOLT12 Pay tries to make all of them work seamlessly. Fragmented ecosystems often evolve this way: someone builds a solution that’s compatible with everything else, and it eventually becomes the de facto standard. That’s exactly the role it’s aiming for—we’ll see if it succeeds.

GitHub

GitHub - Alex71btc/lndk-pay: Self-hosted Lightning payment and identity server with native BOLT12 support for Umbrel and StartOS.

Self-hosted Lightning payment and identity server with native BOLT12 support for Umbrel and StartOS. - Alex71btc/lndk-pay

First public macOS kernel memory corruption exploit on Apple M5 Apple spent five years building hardware and software to make memory corruption exploits dramatically harder. Our engineers, working together with Mythos Preview, built a working exploit in five days.

First public macOS kernel memory corruption exploit on Apple M5

Apple spent five years building hardware and software to make memory corruption exploits dramatically harder. Our engineers, working together with ...

Three attempts to kill my President. Three attempts to kill the United States. Three attempts to kill the American spirit. And yet those three attempts have only made me — as an American citizen — stronger, more hopeful, and more determined than ever.

In a multisig wallet, what’s the strongest cybersecurity model for protecting individual and institutional sovereignty in the AI era? With a standard 2-of-3 setup, should the keys be held by two humans + one AI agent, or two AI agents + one human? Food for thought! Short answer: keep humans in the quorum. Two humans + one AI (never two AIs + one human). Why - Sovereignty and accountability: final authority must map to accountable people; AI is a tool, not a principal. - Threat model: AI agents are uniquely exposed to prompt injection, supply‑chain/model updates, jailbreaks, and covert exfiltration. Don’t let an automated system ever be a majority signer. - Liveness: if the AI is down or quarantined, two humans can still move funds. Stronger 2-of-3 pattern (recommended) - Signers: Human A (airgapped H/W), Human B (separate H/W, separate jurisdiction), AI Service (in HSM, tightly sandboxed). - Policy: - Day-to-day: Human A + Human B. - Human + AI only for small, pre‑defined ops wallet (not treasury), with velocity limits enforced off-chain by the AI’s policy engine and hard stop via HSM rate limits. - Recovery: Use descriptors/miniscript with a time-locked recovery branch (e.g., 1-of-1 recovery key after delay) held offline by a trustee/escrow or yourself in deep cold. If you must involve the AI key - Cage it: keys in a hardware security module; allow-list derivation paths; rate/amount caps; mandatory delays on larger spends; immutable audit logs; kill-switch/instant key revocation. - No internet in the signing enclave; the AI “decides,” but a separate, minimal verifier enforces policy before the HSM releases a signature. - Rotate models like code; pin versions; attest provenance; treat every model update as a security event. Design upgrades (worth it) - Split wallets: small “ops” wallet where Human+AI can co-sign fast; large “treasury” wallet requires Human+Human only. - Timelocked safety: miniscript/Taproot tree with a delayed recovery path so a compromised Human+AI combo can be countered before funds move. - Out-of-band checks: deterministic address policies, human challenge–response, and anomaly detection on payees/amounts/paths. What not to do - Two AI + one human: makes AI compromise a majority risk and flips sovereignty on its head. - Let the AI hold an unbounded hot key for treasury. Bottom line - Best 2-of-3: two humans + one AI (AI constrained). - Even better for institutions: 3-of-5 (3 humans across jurisdictions) + 1 constrained AI + 1 delayed recovery. - Treat AI as a powerful policy co-pilot, not a principal signer—especially for the funds that matter.

UK government says 100 countries have spyware that can hack people’s phones

TechCrunch

UK government says 100 countries have spyware that can hack people's phones | TechCrunch

The U.K.'s cybersecurity chief warned that U.K. businesses and critical infrastructure are underestimating the threat from spyware attacks and...

Over a hundred governments now wield tools that can silently read everything on your phone without leaving a trace. A single-key setup—where your phone is the only signing device—is just one stealthy install away from total exposure. Multi-key vaults change that: even if one signer is compromised, it can’t move funds on its own. Why let the loss of a single device put everything at risk? What we are working on! PrivKey.io