Damus
Open in Damus

Recent Notes

Stacking Functions · 111w
Por que?
Johan Liebert · 111w
I was expecting some "nice to meet you Johan" but we can skip it I guess. So Mj lets see... was you passphrase very simple or was it complex ? If it was very simple someone could hack; if it was medium simple someone that knows you very well could guess; and finally, if it was complex you are lying ...
nobody · 111w
Early this morning I woke up and noticed on my watch only wallet in BlueWallet and Sparrow desktop that someone has initiated an unauthorized transfer of all of my UTXO's to a BTC address that is not ...
 nobody profile picture
nobody @nobody
Ask me how nervous I was moving my entire stack twice in three hours to counteract an unauthorized TX of all of my UTXO’s by a drainer exploit. Still don’t know where my security broke down but I suspect it was BlueWallet mobile. It was behaving strangely and opening without faceID etc. Deleted. Sparrow desktop only now.
nobody · 111w
Early this morning I woke up and noticed on my watch only wallet in BlueWallet and Sparrow desktop that someone has initiated an unauthorized transfer of all of my UTXO's to a BTC address that is not ...
 nobody profile picture
nobody @nobody
OK so final rundown. Cold Card is the shit. No signing device and I’ve been air gapped since day 1, so despite the unauthorized TX showing “signed”, it would not progress to completion. Did a Replace With Fee to override the unauthorized TX and send sats to a temp address. Renewed my HW wallet seed to re-establish it is good. Looks like I am in the clear. Unless there is something fundamentally wrong with Cold Card’s security model, or with Sparrow desktop.

Cost: my seed plates and $50 in TX fees.

Fuck you hacker.
1
Johan Liebert · 111w
Hi MJ, I am Johan Liebert a kid's rights student. About your issue, did you have a passphrase that was never in any decive conected with the network ?
[ARCHIVED] Jay · 111w
Don't worry about your coldcards. You can reset them and generate new seeds on them. Just make sure you don't need the old keys before you do that.
 nobody profile picture
nobody @nobody
Cool thanks. But holy fuck what a wake call. Seeing an unauthorized TX for your entire stack is heart stopping shit. After hyping everyone I know on this asset, I’m going to look like a real schmoe if I get wrecked. I’d feel a lot better if I had some remote idea of how someone signed a transaction on my behalf when I have absolute physical control over all of the hardware and backups. And it is interesting that the unauthorized TX passed the 10 minute ETA for confirmation and still didn’t finalize.

I’m pissed that I have to throw away my steel backups. They weren’t cheap. Next copy is getting scrawled on the wall of my cave lol
🪃1🫂1
[ARCHIVED] Jay · 111w
I totally feel you dude. I saw the amount and was praying you could make it in time. I have no idea how this guy signed this transaction.
BUB · 111w
Is your seed compromised? What was your process when migrating from ledger to cold card? Did you create a new seed? I see you had difficulties with cloning a cold card, lots of potential places you...
 nobody profile picture
nobody @nobody
Yeah the cloning thing was easy to remedy. Just firmware upgrade on both cold cards and it went off without a hitch.

Do you think all of the addresses on my Cold Cards are now unusable? It’s funny the gains on this cycle are being eaten by emergency TX fees and hardware purchases.

Thanks for your input. 🤙🏽