Nishant Bansal

52 posts

Nishant Bansal banner
Nishant Bansal

Nishant Bansal

@nishant282003

Lightning network security | @spiralbtc Grantee | previously @Cisco

Katılım Nisan 2022
72 Takip Edilen48 Takipçiler
Sabitlenmiş Tweet
Nishant Bansal
Nishant Bansal@nishant282003·
everything is game theory
English
0
0
3
348
Nishant Bansal retweetledi
International Cyber Digest
International Cyber Digest@IntCyberDigest·
‼️ A 16-year-old Linux KVM vulnerability called Januscape (CVE-2026-53359) lets a root user inside a guest VM escape to the host on Intel and AMD x86 systems, and a proof of concept that crashes hosts is already public. Canonical says patched Ubuntu kernels are still pending for all releases and recommends disabling nested virtualization in the meantime.
International Cyber Digest tweet mediaInternational Cyber Digest tweet media
English
46
284
3.1K
345.8K
Nishant Bansal retweetledi
Spiral
Spiral@spiral_xyz·
We’ve rebranded and expanded: spiral.xyz
Spiral tweet media
English
30
54
236
98.9K
Nishant Bansal retweetledi
Bitcoin Optech
Bitcoin Optech@bitcoinoptech·
Nishant Bansal (@nishant282003) and Matthew Zipkin joined Optech to discuss Newsletter #411: News ● LND zero-timestamp gossip DoS disclosure (1:00) Selected Q&A from Bitcoin Stack Exchange ● Is it a bug that `OP_IF` is part of the tapscript opcodes? (34:02) ● Why would forbidding `OP_IF` in tapscript be a problem? (41:11) ● Does a softfork always succeed? (49:17) ● How to set up Bitcoin Core to mine a valid block after the BIP110 activation in August 2026? (56:44) ● Are BIP110 blocks on a branch with lower difficulty valid? (59:47) ● What is the story behind Bitcoin test networks? (1:07:41) ● Why was `-datacarriersize` redefined in 2022, and why was the 2023 proposal to expand it not merged? (1:15:35) ● Are chains of 26 unconfirmed transactions prohibited by the wallet in Bitcoin Core 31.0? (1:25:33) ● Are there changes in Bitcoin Core 29.0 that affect memory usage? (1:28:20) ● What is Bitcoin Core's release schedule? (1:30:21) Releases and release candidates ● LDK v0.1.10 (1:34:50) ● LDK v0.2.3 (1:35:31) ● BTCPay Server 2.4.0 (1:37:04) Notable code and documentation changes ● Bitcoin Core #35070 (1:39:27) ● Bitcoin Core #35182 (13:15) ● BIPs #2198 (1:46:09) ● LDK #4713 (1:51:17) ● LDK #4684 (1:53:47)
English
4
6
22
4.4K
Nishant Bansal retweetledi
Bitcoin Optech
Bitcoin Optech@bitcoinoptech·
Nishant Bansal (@nishant282003) posted to Delving Bitcoin disclosing a denial-of-service vulnerability he discovered through state-machine fuzzing of LND’s gossip handling... #lnd-zero-timestamp-gossip-dos-disclosure" target="_blank" rel="nofollow noopener">bitcoinops.org/en/newsletters…
English
1
2
3
297
Nishant Bansal retweetledi
Bitcoin Optech
Bitcoin Optech@bitcoinoptech·
Bitcoin Optech newsletter #411 is here: - describes the responsible disclosure of a denial-of-service vulnerability that affected older versions of LND - summarizes popular Q&A from Stack Exchange - Optech Newsletter #411 Podcast bitcoinops.org/en/newsletters…
English
2
10
20
2.1K
Nishant Bansal retweetledi
Sparrow Wallet 🐦
Sparrow Wallet 🐦@SparrowWallet·
Following the appeal, the App Review Board has confirmed that @craigraw's Apple Developer account will not be terminated. Sparrow on macOS is safe.
Craig Raw 🐦@craigraw

Update: the App Review Board has confirmed that my Apple Developer account will not be terminated. Sparrow on macOS is safe. Thank you to everyone who shared and reached out in the past 24 hours - I'm grateful. And credit to @Apple for reviewing the appeal and reaching the right outcome. The deeper problem hasn't gone away: apps impersonating @SparrowWallet are still reaching users and putting their funds at risk. I'll keep working to protect people from those scams, and I hope to do so alongside @Apple. Thank you all.

English
62
244
1.9K
54.4K
Nishant Bansal retweetledi
Sparrow Wallet 🐦
Sparrow Wallet 🐦@SparrowWallet·
Unless @Apple's decision to terminate @craigraw's Apple Developer account is reversed by June 30, all new installs of Sparrow will fail, and development on macOS will end. If you value Sparrow, a repost would help. @AppleSupport
Craig Raw 🐦@craigraw

My attempt to protect users from scam apps on the @AppStore has gotten my Apple Developer account flagged for termination - ironically, for "dishonest activity". Unless it's reversed by June 30, all new installs of Sparrow Wallet will fail, and development on macOS will end. The context: since 2023, more than a dozen fake "Sparrow" apps have appeared on the App Store, as recently as April this year. Users have contacted me after losing their savings, in some cases their life savings, to these impersonators. I'm the developer of the real Sparrow Wallet, a desktop app, and I hold the registered US trademarks for the name and logo. I have publicly warned @Apple and the community about these fake apps from early 2024, but they keep appearing. The app @Apple flagged was a placeholder that was never published. Its only purpose was to warn users that Sparrow is desktop-only and that other "Sparrow" apps aren't mine. This approach may have been misguided, but there was nothing dishonest about it. I'm confident this is an automated misclassification that Apple would reverse on review - but I may be terminated before a human ever looks at my appeal. The cost would fall on @Apple's own users: blocked installs and no updates for a tool people rely on, which opens the door for more fakes. If you value Sparrow, a repost would help. @AppleSupport

English
184
1.9K
3.2K
293.4K
Nishant Bansal retweetledi
Matt Corallo 🟠
Matt Corallo 🟠@TheBlueMatt·
Quick update. GitHub has decided our open-source project has been permanently banned with no explanation and no option to appeal, pointing to a ToS that clearly does not cover anything we’ve ever done. I guess it’s time for Bitcoin projects to leave @github.
Matt Corallo 🟠@TheBlueMatt

We’ve had a few similar cases recently. Worse, our org currently has no CI because GitHub wrongly flagged a contributor (not admin/maintainer, just someone new who opened a few PRs). We’ve escalated it through corporate account managers and still basically nothing.

English
43
83
433
95.5K
Nishant Bansal retweetledi
calle
calle@callebtc·
Technology is the most beautiful when it makes governments afraid.
English
24
64
441
9.8K
Nishant Bansal retweetledi
Bitcoin Core Project
Bitcoin Core Project@bitcoincoreorg·
We have become aware of a privacy bug in the -privatebroadcast feature, newly introduced in Bitcoin Core 31.0, that may cause the originator’s IP address to be revealed to the receiving peer under certain network conditions. A fix is forthcoming and will be released with 31.1.
English
98
71
289
98.5K
Nishant Bansal retweetledi
Vincenzo Palazzo
Vincenzo Palazzo@PalazzoVincenzo·
Last week was the Lightning Dev Summit in Vienna, full of great people & talents, where we discussed the future of Lightning at the protocol level Here are my personal takeaways: 1/N 🧵
English
2
20
52
4.8K
Nishant Bansal retweetledi
Virtual Private Node
Virtual Private Node@VirtPrivNode·
Virtual Private Node v0.4.2 is live. Every time you create a Lightning invoice, you're revealing your node, your channels, and your UTXOs. That era is over. Blinded paths now on by default. Your node stays hidden. Also, payment routes now show node aliases and per-hop fees.
Virtual Private Node tweet media
English
2
7
32
4.2K
Nishant Bansal retweetledi
Justin Moon
Justin Moon@_JustinMoon_·
@0xSero The Human Rights Foundation would like to fund more self-sovereign AI projects. Here is the link to apply and I can answer questions hrf.org/program/ai-for…
English
5
9
61
5K
Nishant Bansal retweetledi
Bitshala
Bitshala@bitshala_org·
BTCPayServer is the backbone of the Bitcoin circular economy, but how does the self-hosted stack actually work under the hood? ⚡️ Bitshala open-source contributor Abhijay Jain @CodeInVeins, just published a massive deep dive into the architecture of @BtcpayServer. Check out the full article below👇
Bitshala@bitshala_org

x.com/i/article/2054…

English
0
11
23
1.9K
Nishant Bansal retweetledi
Project Loupe
Project Loupe@ProjectLoupe·
loupe [NOUN] 1) A small magnifying tool used by jewelers to detect imperfections in gemstones. 2) An AI-powered vulnerability scanner for open-source bitcoin projects, designed by Block and Spiral to surface flaws before attackers do. spiralbtc.substack.com/p/meet-loupe-a…
Project Loupe tweet media
English
13
39
174
77.1K