Vulnerabilities in Bitcoin Libraries and Supply Chain Security

I'm joined by guests Craig Raw, Rob Hamilton and Ben Carman to go through the list.

Housekeeping
00:01:34 Big COLDCARD Q news
00:01:46 Understanding The COLDCARD Mk4 Security Model by Guy Swann
00:02:02 Coinkite Reseller Program 2024 update


Major/Urgent Vulnerability Disclosures
00:02:26 Bitcoin Core Disclosure
00:04:15 NBitcoin library
00:06:55 Supply chain attack


Bitcoin
• Software Releases & Project Updates
00:33:55 Bitcoin Core
00:34:14 Sparrow Wallet
00:42:55 BDK
00:43:11 HWI
00:43:22 Nunchuk Android
00:43:28 Liana
00:43:55 Keeper Desktop
00:44:11 RoboSats
00:44:19 Wasabi Wallet
00:51:53 SwissBitcoinPay
00:51:57 BoltzExchange client
00:52:02 Padawan Wallet
00:57:25 LiveWallet
00:57:33 BIP39-XOR
00:59:06 ESP-Miner

• Project Spotlight
00:59:32 Mutation Core
00:59:45 Dana Wallet
00:59:52 BitVore
1:00:13 SwapMarket
1:00:20 NOIST
1:09:14 Shielded CSV
1:09:46 Vinteum introduces Bitcoin Dev Launchpad
1:09:57 The Bitcoiner's Intro to Rust
1:13:23 Silent Payment Faucet
1:13:29 Ashigaru
1:14:42 Bitcoin Scoresby
1:14:50 BConf


Vulnerability Disclosures
1:15:14 PIXHELL Attack
1:15:49 Marko Polo
1:16:42 Five dollar wrench attack
1:16:56 Social engineering attack
1:18:28 German law enforcement agencies
1:19:13 The Tor project addresses concerns over a law enforcement attack
1:19:21 Supply chain attack

Privacy & Other Related Bitcoin Projects
 • Software Releases & Project Updates
 1:20:37 SimpleX
 1:20:40 Tails
 1:20:44 SideBand
 1:21:59 reticulum-meshchat
 1:22:01 NomadNet

• Project Spotlight
 1:22:07 rPGP
 1:22:13 Discord introduces the DAVE protocol


Lightning & L2(+)
 • Project Spotlight
 1:22:22 Brick wallet
 1:22:27 lnrecc

• Software Releases & Project Updates
 1:24:53 Phoenix Wallet
 1:25:02 LNbits
 1:25:13 minibits-wallet
 1:25:23 LNDg
 1:25:40 Lightning Terminal
 1:25:43 Aqua Wallet
 1:25:50 Second


Nostr
• Project spotlight
1:27:01 Nostr-social-graph
1:27:08 Wherostr
1:27:16 gitworkshop.dev
1:27:26 ngit
1:29:52 SatShoot
1:29:57 Known Nostr Attack
1:30:04 Foro.Wiki
1:30:16 Whitenoise
1:31:34 Pollerama
1:31:41 ZapD (Zap Delivery)
1:31:46 Nostr Personality Analyzer
1:31:59 Alphaama releases 3 micro-apps


Bitcoin
• Software Releases & Project Updates
1:32:19 Anchorwatch

Boosts
1:54:55 Shoutout to top boosters @Ape Mithrandir, @vake, @user54549358 , @tac_btc, @LITTLE & @btconboard

Links & Contacts:

• ⁠⁠⁠⁠Website⁠⁠⁠⁠: https://bitcoin.review/Podcast
• ⁠⁠⁠⁠Substack⁠⁠⁠⁠: https://substack.bitcoin.review/
• ⁠⁠⁠⁠Twitter⁠⁠⁠⁠: https://twitter.com/bitcoinreviewhq
• ⁠⁠⁠⁠NVK Twitter⁠⁠⁠⁠: https://twitter.com/nvk
• ⁠⁠⁠⁠Telegram⁠⁠⁠⁠: https://t.me/BitcoinReviewPod
• ⁠⁠⁠⁠Email⁠⁠⁠⁠: producer@coinkite.com
• Nostr & LN:⚡nvk@nvk.org (not an email!)
• Full show notes: https://bitcoin.review/podcast/episode-76