Here is the new blog article showing how the new Trezor Suite desktop app looks like compared to old version, and you can also see other improvements and changes they made: https://trezor.io/learn/a/introducing-the-new-trezor-suiteActivity tab was not working correctly for me in new version, and it didn't show any transaction notifications like before, but maybe they fixed that in v24.2.2. Address poisoning attack prevention was also introduced for improved security.
|
|
|
How does this scanning QR back and forth between the Blockstream website and the Jade wallet adds any security? Once the PIN is entered, anyone can do the same thing. How is this method any more secure than just entering PIN to unlock a wallet?
Creating one topic is enough, there is really no need for you two create two separate topics in short time about the same PIN issue Adding additional PIN code is replacement for secure element, and it's not recorded on device like in other hardware wallets. That is why they Blockstream is calling this a virtual secure element. There is plenty information on their website, especially related with QR mode you are using: https://help.blockstream.com/hc/en-us/articles/10731523559193-Which-unlock-method-should-I-choose-to-access-QR-ModeWow great information. I had no idea, all three (PIN, wallet, & phone) need to be specific to unlock. BTW, what happens if I lose my phone (the one I used to scan the Jade QR)?
Nothing happens if you have seed words written and stored offline in secure place.
|
|
|
Very helpful post! Should Trezor safe 3 with Infineon OPTIGA Trust M be EAL6+? The table shows it's N/A.
Yeah it should be like that, Trezor website also added that information recently, thank you for noticing it. I added EAL6+ certification for Trezor 3 Safe, and if you are free to report anything else that is missing or incorrect in this list. Hardware wallets are changing stuff al the time, so there could be some information that is outdated.
|
|
|
Are you still using TTGO T-Display or something else with this code? I see website is showing e-ink ticker version 3 and it looks a bit different from older version that was posted in OP. PS This could be nice affordable alternative for bigger BTClock, and I already have TTGO T-Display that is collecting dust.
|
|
|
Unlikely. That's like robbing a bank when your debit card gets blocked. Having that much in their hot wallet must be very encouraging for other hackers to try the same though. One way to make it not worth their while would be by keeping significantly less money in hot wallets.
I am not sure, but they pissed some people for sure. You cant use a bank without verification, while FixedFloat was doing only selective verification, and there are many cases when they seized money from people, it was even posted in this forum about that. From what I read, a few darknet market admins also lost money unexpectedly with FixedFloat (this was last year and before then as well). It could be they hired some kind of hacker or group to take them down. Either way, its definitely a sort of karma. I don't know how they'll stay in operation after this, or why. Clearly a terrible business model.
I didn't know about that but I am not surprised to hear it. That doesn't mean that those admins hacked or hired anyone but there is a motive to do it, and this is the first thing to look when crime happens. Someone probably knew they have a lot of money in held hot wallet, so it is also possible that someone leaked information from the inside.
|
|
|
Is theymos back to sleeping hibernation mod again? His last post was on February 6 and I am sure he is busy with other things in his life, but maybe it's time to check merit source applications again. We know there is one less merit source now and I think icopress will be a good choice to fill the empty spot.
|
|
|
Fixedfloat has been hacked yesterday, the real sites is flxedfloat.com and it's currently temporary unavailable. However there's a phishing site comes up using fixed lfoat.com domains. I dont think Fixedflaot was temporary unavailable at all. Their website is working fine, but you can't swap anything or use their exchange service. It's no surprise to see scammers are using this situation to try and trick people with phishing domains.
|
|
|
One of the safest mean to engage the use of cod storage is in use of hardware wallet, they are of different categories and types, but just as the title says, suggest your best hardware wallet and in addition to that, I will recommend that we also suggest the worst to use among the list with reasons for each selection we made.
Safest hardware wallets are airgapped and they are not connected to other devices in any way. They should be open source with reproducible code, and there are only a few wallets like this, Passport, Keystone and some diy signing devices like Seedisgner and Krux. Trezor Safe 3 is not a bad choice, but it's not airgapped and I wouldn't say they are the best option at the moment.
|
|
|
The team did confirm the hack and denied that it was an inside job. They're currently in maintenance mode.
I don't think they are coming back any time soon, like they say on their website. Even if they come back they are probably going to change to fully kyc, and they will have hard time recovering from this loses. But I would love to hear what they have to say, last time they logged in and posted was in the end of January: https://bitcointalk.org/index.php?topic=5482815.msg63576532#msg63576532 As far as I know, they got hacked yesterday. Can't say that I ever heard of them, let alone use them.
They are all over the forum, and they have registered account here since 2018: https://bitcointalk.org/index.php?action=profile;u=2387384
|
|
|
Is there a bitcoin-related service that provides such a service?
Why would this p2p messaging needed to be Bitcoin related? Examples of suitable products: Signal, Session, etc.
SimpleX.chat is best option I found so far. It works both on mobile and desktop computers, it's open source, there are no user IDs and no need to use phone numbers. Important to know that SimpleX is accepting Bitcoin and other crypto donations. https://github.com/simplex-chat/simplex-chat#help-us-with-donations
|
|
|
I have received some PMs from new mixers asking me to add their links, so basically I'm trying to add every single resource as long as it's not dubious or a fraud service. Hence why things like Sinbad are not here.
Watch out for this PM's. I would be very careful with any new mixing services as you can't really prove if they are a fraud or not. There is also one new scam accusation that was posted few days ago but I can't really say if this is genuine or not.
|
|
|
So. The votes have been counted! I think that within a week we will make an announcement. It's funny, but BitcoinGirl.Club took 3rd place in the Miss Bitkintalk category, and since the winners of this category need to confirm their claims to the title, someone will have to show their tits. Show in public? And can this be replaced with some other alternative body parts as proof of ownership??
|
|
|
Fixedfloat has been hacked and lost 26 million US dollars.
I think this hack could easily shut them FixedFloat, but I really don't understand how any exchange nowadays can keep that amount of money in hot wallets and servers It's not that hard to set up cold wallets and multisig setup to prevent this from happening, this will add some complexity and it could slow down things, but security would be much better. I wonder if this could be revenge of someone who got their money seized on Fixedfloat, or something bigger is behind this attack... This is the message I see on their website: ERROR Technical work is underway, we will be back soon!😇 If you need to contact us, you can do this via chat. Lot of people are pissed in twitter: We are ready to answer some questions from journalists regarding the hacking incident and provide our comments. Please contact us by e-mail pr@fixedfloat.com https://twitter.com/FixedFloat/status/1759530635129966813
|
|
|
This is something @libert19 suggested last year. I think it's a good idea: manually copy-pasting BBCode to update your signature is a bit error-prone (not everyone is as careful as they should be, and, although I don't really mess with mobile, I'm guessing that it's even more finicky on a phone/tablet). Besides that, it's just a nice, unobtrusive little time-saver (I bump into [code] blocks quite often on Bitcointalk, so I think this will be pretty handy beyond the use-case that inspired it). PowerGlove strikes yet again I like this idea for another SMF patch and I think this could be used even for other things, not only for signature codes. First thing that pops in my mind is using it for longer codes and for long list of user names or wallet addresses, and I think something similar in other forums. Style B is better option if you ask me, but both of them are good.
|
|
|
I have seen a lot more cloudlfare verification messages popping up, but this is happening on many other websites, no only in bitcointalk forum. Honestly I never liked cloudflare, but nobody ever released any decent alternative to protect against ddos attacks. This makes using Tor browser very challenging sometimes
|
|
|
So I downloaded the official Electrum, copied the address from the receive request generated. added that to Kraken to download the btc.
You can't download bitcoin, you can only withdraw it from exchange wallet to your own. I waited and waited and nothing happened so after advice I checked that address in the list of addresses in Electrum (33 of them) and that one doesnt appear anywhere so; where has my btc gone, where has that address gone? is all lost?
First you should check transaction link you received on your Kraken account and see if transaction is confirmed and completed. Addresses are not gone anywhere in Electrum, balance should appear when everything is completed, and each time new address will be generated.
|
|
|
If those are issued in the US then that answers it, US cards are always finding a way to be a pain in the ass to use in Europe.
Not really. I know people who used US issued cards many times without an issue. Yeah that sounds reasonable and not much different than what I was doing with Binance card.
And I would not be surprised if secret investor for bit.store cards was also someone from binance Anyway, they found a way for this cards to work both with and without kyc, and they can't be easily banned by regulators becasue they are not directly connected with exchanges.
|
|
|
The scope of our guarantee depends on the service in question. With FixedFloat we are unable to offer refunds if the coins were frozen due to taint. Nonetheless, in cases like this, if a user reaches out to us, we intervene and try to assist them in getting their money back. In this recent case we did just that and the user got all their funds back.
I am glad to hear that, and someone should update that info in scam accusation board. It is always worth checking for best exchange rates and to exchange coins with help of Orangefren. Maybe you should start some type of affiliate program. However, with for instance eXch, our guarantee agreement offers a full refund to a user in the event of freezing due to taint.
They are good, and we need more exchanges like that. Is it possible for you to somehow add Bisq and Agoradesk rates?
|
|
|
airfinex is obviously an alt account, which until now had been characterized by playing a role of "vigilante" so to speak in forum issues. Most of his posts were written in Reputation and he was the first to draw attention to Ratimov's plagiarism, for example.
I had this member on my ignore list for a while so I don't know what he wrote after that, but I don't see any usual signs of account changing hands, there was no email and password reset, and he is only a Full Member. There is however obvious change of writing style and he started making posts in gambling board, so anything is possible.
|
|
|
Long overdue update done.
You need to update again and check all the links manually. Two cards from this list are not available anymore, that is Blockcard and Spend, but maybe there are more of them that needs to be removed. Do you guys think I should erase my squabbling with Symmetrick from post #5 and make them reserved posts instead?
I think it's fine to do that.
|
|
|
|