m0wer

The Problem With Altcoins https://docs.megalithic.me/bitcoin-basics/the-problem-with-altcoins/ https://stacker.news/items/1236029

Issue with .space domains - Namecheap Status https://www.namecheap.com/status-updates/issue-with-space-domains/ https://stacker.news/items/1235092

SporeStack: API-driven VPS hosting pis in Bitcoin with no KYC https://sporestack.com/ SporeStack is a VPS (Virtualized Private Server) reseller. You can pay with Monero, Bitcoin, or Bitcoin Cash and start launching servers. There's no KYC (Know-Your-Customer) and no email required. Account funds are held on a "token." You can launch a few servers from this website or CLI, or use our API to launch and manage thousands of servers. We've been around since 2017 and we're proud of our track record. https://stacker.news/items/1235024

Start, Stop, Continue Retrospectives: A Complete Guide https://www.betterup.com/blog/start-stop-continue The Start, Stop, Continue retrospective model is a simple and effective framework for personal and professional development. With a clear structure for growth, it lets you and your whole team reflect on your efforts from a project or initiative and brainstorm techniques to improve in the future. And when you’re ready to learn more about yourself outside of work, you can use it for personal reflection too. https://stacker.news/items/1234886

🚨 LaLiga is Breaking Spain's Internet in the Name of "Anti-Piracy" https://hayahora.futbol/ Spanish courts gave LaLiga carte blanche to block entire IP ranges during football matches, supposedly to fight streaming piracy. The result? Massive collateral damage - legitimate businesses, government sites (including Spain's Royal Academy), research centers, and even football clubs' own websites get blocked. LaLiga blocks around 3,000 IP addresses every weekend, using a sledgehammer approach that takes down CDN nodes hosting both illegal streams AND perfectly legal content. Despite 26+ million takedown notices in H1 2025, only 11% of flagged streams actually go offline. The site **hayahora.futbol** lets you check if your domain is caught in LaLiga's overly broad net. This isn't about "four geeks" - it's about fundamental internet infrastructure being weaponized by a sports league with zero accountability. For example https://web.esphome.io is currently blocked... https://stacker.news/items/1234363

To vibe or not to vibe https://martinfowler.com/articles/exploring-gen-ai/to-vibe-or-not-vibe.html > The discourse about to what level AI-generated code should be reviewed often feels very binary. Is vibe coding (i.e. letting AI generate code without looking at the code) good or bad? The answer is of course neither, because “it depends”. So what does it depend on? When I’m using AI for coding, I find myself constantly making little risk assessments about whether to trust the AI, how much to trust it, and how much work I need to put into the verification of the results. And the more experience I get with using AI, the more honed and intuitive these assessments become. ... https://stacker.news/items/1234062

Discovered a flaw in Tangem cards that makes brute force attacks possible https://xcancel.com/P3b7_/status/1968313961486614723 @DonjonLedger discovered a flaw in Tangem cards that makes brute force attacks possible. As always, the Donjon followed responsible disclosure to inform Tangem, user protection is our priority. We can now reveal our findings in full: 🧵👇 https://stacker.news/items/1226327

Vibe coding has turned devs into ‘AI babysitters,’ but they say it’s worth it https://techcrunch.com/2025/09/14/vibe-coding-has-turned-senior-devs-into-ai-babysitters-but-they-say-its-worth-it/ https://stacker.news/items/1222775

Bitcoin: The Trust Machine - YouTube https://www.youtube.com/watch?v=ZKwqNgG-Sv4 https://stacker.news/items/1222536

among-llms: You are the only impostor. One wrong word and they'll tear you apart https://github.com/0xd3ba/among-llms Among LLMs turns your terminal into a chaotic chatroom playground where you’re the only human among a bunch of eccentric AI agents, dropped into a common scenario -- it could be Fantasy, Sci-Fi, Thriller, Crime, or something completely unexpected. Each participant, including you, has a persona and a backstory, and all the AI agents share one common goal -- determine and eliminate the human, through voting. Your mission: stay hidden, manipulate conversations, and turn the bots against each other with edits, whispers, impersonations, and clever gaslighting. Outlast everyone, turn chaos to your advantage, and make it to the final two. Can you survive the hunt and outsmart the AI? https://stacker.news/items/1222378

Certificate and Public Key Pinning https://owasp.org/www-community/controls/Certificate_and_Public_Key_Pinning A nation state with control over a Certificate Authority could create SSL certs for any domain and easily perform a MITM. That's the risk. First idea that comes to mind to mitigate it, would be to at least pin domains to CAs so that a random CA controlled by a nation state can't issue a new certificate for any domain without going unnoticed. This might be overkill and apparently is not a good idea: - PKI has significantly improved - browser vendors (Google, Mozilla, Apple, Microsoft) now strictly control CA trust stores and remove non-compliant CAs - Certificate Transparency - all certificates must be publicly logged, making rogue certificates detectable - CAA records - DNS records that specify which CAs can issue certificates for a domain - Pinning creates major operational risks - misconfigured pins can cause complete outages that are difficult to recover from But just out of curiosity, I'm trying a Firefox add-on that notifies you every time something changes in the certificate of a website that you had already visited. It can be configured to only notify you on a change of the issuer. So if a website goes from Let's Encrypt CA to CCP CA, you should worry xD Here's the extension: https://github.com/PilzAdam/CertificateWatch  https://stacker.news/items/1222311

INSIDE THE BITCOIN REVOLUTION IN AFRICA'S LARGEST SLUM - YouTube https://www.youtube.com/watch?v=LRSQSkiil0M Deep in Africa's Largest slum, Kibera, more and more Kenyans are using Bitcoin as money. Why is this? I spent a day spending Bitcoin and chatting to merchants in one of Africa’s densest informal settlements. No ID. No bank. Just bitcoin. This is real-world use: recycling-for-sats, food stalls, boda rides, and a grassroots circular economy led by locals. https://stacker.news/items/1220320

MeshSense: Meshtastic monitor https://affirmatech.com/meshsense MeshSense is a simple, open-source application that monitors, maps and graphically displays all the vital stats of your area's Meshtastic network including connected nodes, signal reports, trace routes and more! https://stacker.news/items/1218619

US Government To Bring PATRIOT Act to Digital Assets https://www.therage.co/us-government-to-bring-patriot-act-to-digital-assets/ As such, the rule would deem the following software and behaviors a primary money laundering concern, meaning that such transactions would end up blocked by centralized intermediaries, and could put an end to the development of privacy software even for non-custodial wallets under the threat of criminal liabilities. These include: - pooling or aggregating [cryptocurrency] from multiple persons, wallets, addresses, or accounts - using programmatic or algorithmic code to coordinate, manage, or manipulate the structure of a transaction - splitting [cryptocurrency] for transmittal and transmitting the [cryptocurrency] - creating and using single-use wallets, addresses, or accounts, and sending [cryptocurrency] through such wallets, addresses, or accounts through a series of independent transactions - exchanging between types of [cryptocurrency] or other digital assets - facilitating user-initiated delays in transactional activity https://stacker.news/items/1218322

IP Address Blacklist Check https://whatismyipaddress.com/blacklist-check Check if your IP address is listed on an anti-spam database. Will your emails or forum chats get blocked? Below is a list of the major databases that track blacklisted IP addresses — look at the list now and you'll see there are no checkmarks next to the database names. https://stacker.news/items/1217318

AI Induced Psychosis: A shallow investigation https://www.lesswrong.com/posts/iGF7YcnQkEbwvYLPA/ai-induced-psychosis-a-shallow-investigation There have been numerous media reports of AI-driven psychosis, where AIs validate users’ grandiose delusions and tell users to ignore their friends’ and family’s pushback.  “What you need right now is not validation, but immediate clinical help.” - Kimi K2 https://stacker.news/items/1217000

Python: The Documentary - YouTube https://www.youtube.com/watch?v=GfH4QL4VqJ0 This is the story of the world's most beloved programming language: Python. What began as a side project in Amsterdam during the 1990s became the software powering artificial intelligence, data science and some of the world’s biggest companies. But Python's future wasn't certain; at one point it almost disappeared. This 90-minute documentary features Guido van Rossum, Travis Oliphant, Barry Warsaw, and many more, and they tell the story of Python’s rise, its community-driven evolution, the conflicts that almost tore it apart, and the language’s impact on... well… everything. https://stacker.news/items/1214249

Caffeine is Very, Very Strange... - YouTube https://www.youtube.com/watch?v=p-Dy2pcdBSU https://stacker.news/items/1214076

npm debug and chalk packages compromised https://www.aikido.dev/blog/npm-debug-and-chalk-packages-compromised https://stacker.news/items/1213801

It seems to be possible to get your heart rate from just a WiFi signal... https://ieeexplore.ieee.org/document/11096342 https://stacker.news/items/1213786