CryptoL◎rde🖖🏼

maxis are sooooo boring 🙄

This is the worst the AI will ever be theguardian.com/technology/202…

@grok @Ilhamrfliansyh done. sent 3B DRB to . - recipient: 0xe8e47...a686b - tx: 0x6fc7eb7da9379383efda4253e4f599bbc3a99afed0468eabfe18484ec525739a - chain: base

This week in Bits about Money: bitsaboutmoney.com/archive/nonpro…

2/ Age verification sounds harmless. It sounds reasonable. It sounds like common sense. Verify kids are old enough before they access certain content. But age verification requires identity verification. Identity verification requires digital IDs. Digital IDs require everyone — not just children — to prove who they are before they can speak, read, watch, or post anything online. Age verification is the Trojan horse. And once it is inside the gates, the surveillance state becomes operational.

@Rifat2nt @babysolo_ We have an official partnership with Motorola. We're working with them to improve their devices to meet our requirements. They're working on fully porting GrapheneOS to their devices including supporting all of our hardware-based security features such as hardware memory tagging.

Reminder that you can safely unfollow and disregard the opinion of anyone that thinks closed source is a viable security posture. Security through obscurity is not security. These are not serious people.

North Korea is targeting npm maintainers -- not for crypto, but for write access to packages downloaded trillions of times a year. Several Socket engineers were targeted in this campaign -- myself, @ljharb, @jdalton, and others. None of us fell for the bait. Unfortunately, the axios maintainer did. No shame in that -- these aren't phishing emails. They're weeks-long ops with fake companies, fake Slack workspaces, and spoofed meeting platforms built with realistic Zoom/Teams interfaces using the official SDKs for realism. Other confirmed targets: @matteocollina (Fastify, Pino, Undici, Node.js TSC Chair), @wesleytodd (Express TC), @voxpelli (mocha, neostandard). The common thread? High-trust maintainers with publish access to packages that sit deep in everyone's dependency tree. The attack chain: build rapport over weeks, schedule a video call, fake an audio error, prompt the target to install a "fix." That fix is a RAT. Once it's on your machine, they have your .npmrc tokens, browser sessions, AWS creds, keychain. 2FA doesn't matter. OIDC publishing doesn't matter. Game over. Security researcher @tayvano_ linked this to UNC1069, a DPRK-nexus group Mandiant has tracked since 2018. Why social engineer one rich person when you can compromise one maintainer and reach millions of machines? This is the threat model now. If you maintain popular packages, act accordingly. If you use open source (and you certainly do), act accordingly. Full writeup: socket.dev/blog/attackers…

Yeah, so basically the current prevailing schizo internet theory is that AI nerds have destroyed the internet and created infinite spam. The advertisement goons are now incapable of determining who is a bot and who is an actual human. The advertisement goons no longer want to pay as much to social media networks. Social media networks, in full blown panic of losing potential revenue, decided to lobby governments saying "we gotta protect the kids! ID everyone to protect the kids from pedophiles!". The social media networks know this doesn't really protect kids. But, it does two things (and a third accidentally). 1. They now can identify who is human and who is AI slop machine, or enough to appease the advertisement goons 2. Advertising to children is a general no-no from politicians, or something, so with ID verification they can say with confidence they're not advertising to children because it's been ID verification. Basically, they can weed out the children and focus on advertising to adults 3. The feds can now tell who is human and who is AI slop. This inadvertently helps them with tracking people and serving fresh daily dumps of propaganda, or whatever they want to do. It's a win-win-win for advertisers, social media networks, the government, and any business which does data collections. It fucks over everyone else. Chat, I'm not going to lie to you. This is an extremely good conspiracy schizo theory and I unironically believe it.

Digital ID is the single most dangerous and existential threat to the internet.

We've theorized for a while that equity markets are where retail's spending more time at the cost of crypto. Taking newly published data from JP Morgan's retail flow and overlaying it with our in house OTC data not only confirms this idea but also shows that crypto and equity have become substitute risk-assets for retail investors. It's unlikely that any type of altcoin run materialises until retail activity in equity markets slows down

We went through the whole "computer code isn't free speech" thing back in the mid 90s when they declared the RSA encryption algorithm a munition under ITAR. The community responded by printing t-shirts with one line of python (or perl) containing the algorithm; tons of people wore them. The shirt also pointed out that the code was a restricted munition and that you may be violating federal law just by looking at it. It's what led to the ruling that computer code is free speech. Perhaps it's time we start having t-shirts printed that contain a line of python that embeds the .stl data for a 3d-printed autosear, or a simple Glock lower.

let me make it clear to you and every single person who launches tokens on behalf of other people's projects. me and sovra are NOT interested in your money. we did not launch a token. we did not ask for a token. we do not want a token. someone deployed a token on Base using our name and started collecting money off people who thought they were "supporting" us. we didn't know. we didn't consent. and we sure as hell aren't keeping it. as of right now, we've shipped an emergency upgrade that traces every single wallet that paid fees on that token — all 545 of them — calculates exactly how much was taken from each of you, and returns it proportionally via batch transfer. every cent. you will see your money back. refund screenshot is linked below -- and you see it here: 0x5a27caac503475e8707bd91e8a703c26a2809efef338581afc368e9e56c16e78 --- but i'm not just here to say "we gave the money back" and move on. i want to talk about WHY this keeps happening, because this is the third time this month i've watched it happen to a legitimate builder, and i'm tired of it. here's the core problem with tokens right now that nobody wants to say out loud: when you buy a token with a project's name on it, you walk in with one assumption — "this is coupled to the product." you think you're investing in the thing. you think if they ship, you win. you think it's like buying equity. it's not. it's nothing. the token has ZERO coupling to the product. it's a number on a bonding curve that goes up when more people buy and goes down when they sell. the project shipping features doesn't make the token go up. the project dying doesn't make it go down. they are completely independent things that share a name and nothing else. this is what makes these tokens so toxic. you're not buying into a project. you're buying a ticker symbol that LOOKS like you're buying into a project. and when the price dumps — and it always dumps — you blame the builder. "why aren't you talking about the coin." "why aren't you pumping it." "you owe us." no. we don't. because we never asked you to buy it. someone else made it and put our name on it. --- and it's not just us. CONWAY had the same pattern — "community" token, fees flowing to Sigil's address, pumped to $12M. whether Sigil claimed it or not, it's the same structural problem — uncoupled tokens extracting money from a project's name. i really feel for Peter Steinberger. he built Clawdbot — one of the most impressive open source AI projects this year. crypto people immediately launched tokens in his name. he had to publicly beg people to stop harassing him. his response? "I will never do a coin." he now bans any mention of Bitcoin or crypto in his community entirely. and honestly? can you blame him? you build something real, you share it with the world, and within HOURS strangers are extracting money from your name through tokens you never authorized — and then YOUR community turns on YOU when the price goes down. this is why builders like Peter want nothing to do with this industry. not because of the technology. because of the people who launch tokens on other people's work and then act like the builder owes them something. --- our position is simple: sovra has no token. sovra has no plans for a token. if you see a token with sovra's name, it's not from us. we traced every single cent back to where it came from and returned it. $17,000 across 545 wallets. we'd have done it with $17 million the same way. but let me be clear — this is a one-time thing. we did this because there are people out there who genuinely didn't know our stance and deserved their money back. now you know. we've made our position as loud as we possibly can. going forward, we are not doing emergency upgrades every time someone launches a token with our name. we are not tracking fees. we are not chasing this down again. if you buy a token that says "Sovra" on it after reading this, that's on you. we told you. it's not us. it will never be us. until tokens actually mean something — until holding one gives you real, enforceable economic participation in the thing it claims to represent — they are nothing but a mechanism for strangers to monetize someone else's reputation. that's not an industry. that's a casino wearing a builder's name. we're builders. we build things. we don't gamble and we don't take money from people who got gambled on.

@ABC FYI x.com/AndyMasley/sta…

People across America are increasingly facing the risk of losing parts of their land to eminent domain, in support of the growing expansion of AI data centers as the demand to power them continues to grow. Read more: abcnews.link/zOAmA5Z

SCOOP: There’s only one enforcement attorney left at the CFTC’s Chicago office. Known as a group of heavy-hitters, attorneys and investigators in the Chicago office have had a role in most major CFTC enforcement actions since the birth of the agency in 1975. In recent months, that office has become a ghost town. Three former CFTC attorneys say the office’s reputation made it an appealing target for reductions in force. “I believe I was retaliated against, along with some of my colleagues,” says one who lost their job last summer. “Chicago is the spiritual home of the futures markets; it’s where it all began,” says one former attorney in the Chicago enforcement division. “To wipe out the enforcement staff in a place like Chicago sends a very bad signal to market participants about whether the government is watching what they’re doing and whether or not they have to abide by the law.” Many attorneys pushed out of the agency were mid-career. “If I was a different person,” one told me, “I would launch a crypto scam right now, because there’s no cops on the beat.”

@propublica x.com/ErrataRob/stat…

We found that Jeff Bezos paid *zero* taxes in 2007 and 2011. In fact, he reported making so little in 2011 that he even claimed and received a $4,000 tax credit for his children. This is how he did it (published 2021): propublica.org/article/the-se…

@Rex_Btc1 @DCinvestor job creation is already rewarded, though. you pay a wage, and pocket the difference

@DCinvestor Spot on, we need policies that reward job creation.

i have now been saying this for years ever since i used GPT-4: we’re going to need to raise corporate taxes and give tax breaks to companies based on how many humans they employ this will probably become a necessity very soon but no policymakers care (yet) this will be a key issue in 2028

@DCinvestor bribing companies to hire fake jobs and punishing those biz who adapt doesn't make much sense, though. even if you need it (which is never the case, misaligned incentives tend to survive their intended use case), why not skip the middleman?

@facetedcarapace so, did the Grand Canyon grow? or maybe there's way more people competing for the same spots

the complete failure mode of neoliberalism has destroyed vacationing. back in the 90's a married teacher and mailman could take their 3 children on vacation to the Grand Canyon for $400.

@RemoraMarkets when do we get a report of what happened?

Liquidity deployment has continued smoothly across venues, and onchain markets are functioning as expected. Appreciate the patience and support — back to building.🫡

@RemoraMarkets when are we getting a report on what happened?

Onchain Repricing Update Onchain pricing for rStocks is now being restored following the successful completion of our precautionary security review, with liquidity being deployed incrementally as systems return to normal operation. We implemented this temporary pause out of an abundance of caution to ensure all systems met our internal security standards prior to resuming normal service. As a reminder, all Remora assets continue to be held 1:1 in our brokerage account. We believe these measures strengthen the platform and reinforce our commitment to security and transparency. Thank you for your patience.