Garbage transactions on my LN node!

[NotATether]

Take a look at this:



Someone was sending me a bunch of 1 sat invoices, but I didn't see the descriptions attached to them until now.

It is a bit peculiar, as I don't recall giving my node ID or invoices to any of these sites inside the descriptions.

I know that if you do that on-chain it can be used to fingerprint youl, but this is happening in a LN channel, so should I be concerned about this?

[1715283632]

1715283632

[1715283632]

1715283632

[1715283632]

1715283632

[Pmalek]

This has great potential for (fraudulent) advertising and even attempting to phish someone or infect them with malware if they clicked on such links. It was only a matter of time before someone would use it for bad purposes.

If you didn't give someone your node ID, could they have gotten it from other parties that were on the receiving/giving end of LN transactions with you?
Does the LN software you use record such data?

[NotATether]

This has great potential for (fraudulent) advertising and even attempting to phish someone or infect them with malware if they clicked on such links. It was only a matter of time before someone would use it for bad purposes.

If you didn't give someone your node ID, could they have gotten it from other parties that were on the receiving/giving end of LN transactions with you?
Does the LN software you use record such data?

As I mentioned on the other thread here, I was using LND. Latest version, at the time. There was only one channel open - Voltage-C2 - so I could not have been able to route any payments at the time.

Maybe someone was scraping the IDs if everyone's nodes and sending them all a 1sat transaction. Wouldn't be expensive to pull off at all given how few LN nodes there are.

Also, the transaction UI I posted is from a commercial LN analytics, so I imagine this info is embedded inside the BOLT11 invoices themselves.

[BlackHatCoiner]

You're being spammed by Satogram. As you can see yourself, it only costs about 65k sat to send a message to almost all the lightning nodes.

In my opinion, it doesn't hurt. Just as email spam, simply put it on ignore. It's even better than email spam, because you're getting paid. Minimum, but still. Same thing can happen on-chain.

If you didn't give someone your node ID, could they have gotten it from other parties that were on the receiving/giving end of LN transactions with you?

You can send sat to any lightning node that accepts keysend without any invoice. Just its ID is enough. As you can see, NotATether does accept it.

[FinneysTrueVision]

They can’t fingerprint you this way like they can with an on-chain dust attack. These are just advertisements for prediction markets and other products. If you’ve created a public channel before anybody will be able to see your node’s pubkey and send you messages with keysend if you have this enabled.