Open to ideas about where the leak is here. We need to figur...

mrecheese 🧀

npub1mrechz2tgtmspqc9e6l30dyfy4j57g43srzcvxupzs0cpn8h9pyqwms0g5

hex

fe441c7ed4cd3fb2c13a424e9e27fa86a066ec19b3fef928656b4e5bb83ca2fd

nevent

nevent1qqs0u3qu0m2v60ajcyayyn57ylagdgrxasvm8lhe9pjkknjmhq729lgprpmhxue69uhhyetvv9ujuem4d36kwatvw5hx6mm9qgsd3uut39959acqsvzua0chkjyj2e20y2ccp3vxrwq3g8uqenmjsjq3zftq7

Kind-1 (TextNote)

2026-06-21T21:39:11Z

Open to ideas about where the leak is here. We need to figure it out and get it plugged if it's on this end. These are possibilities (some very unlikely):

  • Coinkite actually sent this
  • Coinkite shipping department skimming addresses
  • FedEx people skimming addresses
  • Customs people skimming addresses
  • Credit card people skimming transaction data
  • Proton account compromised
  • SimpleLogin account compromised
  • Local network/router compromised
  • Up-to-date Mac PC compromised

Somebody has to know:

  1. The customer's address
  2. That the customer purchased a COLDCARD
  3. What a COLDCARD is

That's a small group of people.

nostr:nevent1qqs9ru432gy8qaze2ccsanppg6ezqz5ye75yzjt0cvfc6e8965shc0qpz4mhxue69uhhyetvv9ujuv33d45kctndv5hsygxc7w9cjj6z7uqgxpwwhutmfzf9v48j9vvqckrphqg5r7qveaegfqpsgqqqqqqssj9zgy

原始 JSON

{
  "kind": 1,
  "id": "fe441c7ed4cd3fb2c13a424e9e27fa86a066ec19b3fef928656b4e5bb83ca2fd",
  "pubkey": "d8f38b894b42f7008305cebf17b48925654f22b180c5861b81141f80ccf72848",
  "created_at": 1782077951,
  "tags": [
    [
      "alt",
      "A short note: Open to ideas about where the leak is here. We nee..."
    ],
    [
      "p",
      "d8f38b894b42f7008305cebf17b48925654f22b180c5861b81141f80ccf72848",
      "wss://nostr.wine/"
    ],
    [
      "q",
      "51f2b1520870745956310ecc2146b2200a84cfa841496fc3138d64e5d5217c3c",
      "wss://relay.21mil.me/",
      "d8f38b894b42f7008305cebf17b48925654f22b180c5861b81141f80ccf72848"
    ]
  ],
  "content": "Open to ideas about where the leak is here. We need to figure it out and get it plugged if it's on this end. These are possibilities (some very unlikely):\n\n- Coinkite actually sent this\n- Coinkite shipping department skimming addresses\n- FedEx people skimming addresses\n- Customs people skimming addresses\n- Credit card people skimming transaction data\n- Proton account compromised\n- SimpleLogin account compromised \n- Local network/router compromised\n- Up-to-date Mac PC compromised\n\n\nSomebody has to know:\n1. The customer's address\n2. That the customer purchased a COLDCARD\n3. What a COLDCARD is\n\nThat's a small group of people. \n\n\nnostr:nevent1qqs9ru432gy8qaze2ccsanppg6ezqz5ye75yzjt0cvfc6e8965shc0qpz4mhxue69uhhyetvv9ujuv33d45kctndv5hsygxc7w9cjj6z7uqgxpwwhutmfzf9v48j9vvqckrphqg5r7qveaegfqpsgqqqqqqssj9zgy",
  "sig": "4e3d96c868005e91be752c768f38a8e9a2fcd1482b18da8bd53f699abd73ca7a2617b48e12171962eafda0ad335929c0bca6281e3ff31d392989d9dd33c3d3bf"
}