151 sats \ 2 replies \ @jasonb 17 Jun \ parent \ on: My project got hacked and user funds were stolen devs
Thanks for sharing this. It’s humble and educational. I’m glad to hear the loss wasn’t more significant.
If you have a primary suspect, wouldn’t it make sense to approach them? At best, that’s super unethical of the hacker to keep the funds. If someone left something physical worth 200,000 sats sitting on the table at a coffee shop while they went to the bathroom and I saw someone grab that item because it wasn’t properly secured, I’d still feel comfortable or even compelled to call them out.
I’m not saying you and the victim shouldn’t take responsibility for some mistakes, but I don’t think you should take MORE credit for the theft than the actual thief.
Thanks Jason!
What was important to me was discovering the exploit and being able to fix it (which I was able to do without communicating with the hacker)
I still might try to reach out to who I think the hacker (esp if they keep trying to attack) but I'm gonna give them to chance to come to me first.
In general though I take full responsibility for the attack, the hacker was just exploiting my mistake, so it falls on me.
reply
Sure, I mean we’re all bitcoiners here, so it’s a given in this crowd that personal responsibility is important. I’m just saying, we should call out people who actively are trying to take things from others without permission.
If I’m in a restaurant, and somebody comes up and steals the hat off my head (the victim), I probably should have been holding it in place. The restaurant (you) probably should have had better security. But the one who is acting like a jerk is still the thief.
I hope he comes forward to you, but if he doesn’t, I just think he should at least be called out for acting like a jerk. Otherwise, we’re just on the slippery slope to might makes right.
reply