Nostr Archives

heads up that if you use the new WoS anyone can lookup your balance and transaction history. all they need is one of your bolt11 invoices. @Carman made a tool that you can use to extract a spark address from an invoice. i just tested it with one of my invoices and the tool gave me a sparkscan link that displays my current balance and transaction history 😳. https://github.com/benthecarman/spark-invoice-doxxer i prefer their custodial wallet over this. 📝 5bab8310…

💬 29 replies

Replies (29)

₿k160d ago

😳😬

0000 sats

Derek Ross160d ago

Oh wow. That's a big, BIG, yikes.

0000 sats

47160d ago

😬

0000 sats

corndalorian160d ago

Um…. 😐

0000 sats

btcschellingpt160d ago

😬

0000 sats

royster⚡️160d ago

Ooof

0000 sats

kkratoch160d ago

Albyhub works great for me.

0000 sats

Mx12art152d ago

AlbyHub + AlbyGo = best way to go Tried many wallets, but #Alby just works amazing and it’s fun to explore with AlbyHub 😎😎😎

0000 sats

tigs160d ago

Faaaaark!! Ok thank you heaps for the heads up man. I love their custodial wallet myself but thought this was a step in the right direction. Always 2 steps forward, 3 steps back some of these days! Hey @be1d8979…37fe9479 incoming hotfix? 🙏😁

0000 sats

NotBiebs and 69 others160d ago

There’s always tradeoffs. At least there’s no kyc.

0000 sats

Contra160d ago

Abort

0000 sats

₿k160d ago

In the TestFlight app they allow you to revert to custodial version.

0000 sats

NotBiebs and 69 others160d ago

Not in the US

0000 sats

Matt160d ago

The fuck 😅

0000 sats

ThatWhichisNotSeen160d ago

Yikes

0000 sats

Ben Ewing159d ago

The future of finance indeed

0000 sats

Cruz159d ago

Sneaky..

0000 sats

OnlyReposts159d ago

this is good. #findom and the #gays can't hide anywhere now

0000 sats

Rizful.com159d ago

Danger! Don't use wallets like @be1d8979…37fe9479 and @Blitz Wallet that allow LightSpark to spy on your transactions! See full details: https://github.com/buildonspark/spark/issues/64

0000 sats

Orange Julius159d ago

#fafo

0000 sats

NotBiebs and 69 others159d ago

@Blitz Wallet says it's not a problem with their wallet. I don't have their wallet installed, so i haven't verified. https://x.com/BlitzWalletApp/status/1976258101679473024

0000 sats

Blitz Wallet 159d ago

We just don’t include Spark information inside the lightning invoice. Unfortunately, there are still other ways to find that information outside of our control.

0000 sats

calle152d ago

crazy they went this path

0000 sats

MAHDOOD152d ago

I love WoS because it is custodial lmao

0000 sats

Carman160d ago

It's not something they can really fix. Need lightspark to not publish the data

0000 sats

tigs160d ago

Oh right :/ *raises his fists at lightspark*

0000 sats

Bitcoin Sikho158d ago

If you read the tweet thread, apparently you can track the transaction, for instance if you send a specific amount of sats and then check sparkscan, you can track and link it to the receiver https://x.com/thebluematt/status/1976343136755708395

0000 sats

NotBiebs and 69 others158d ago

Yeah. It’s a bit harder to do though. I don’t think @Carman's tool works with Blitz wallet invoices. It’s super simple to do with WoS invoices.

0000 sats

Carman158d ago

It's an option to turn off when creating an invoice with spark. For whatever reason WoS chose to keep it on

0000 sats