04-08-2026Price:

The Frontier

Your signal. Your price.

BITCOIN

Privacy developers double down after FBI's Samurai Wallet arrests

Wednesday, April 8, 2026 · from 3 podcasts
Ungovernable MisfitsBitcoin OptechNo Solutions
  • Open-source forks like Ashigaru immediately re-launched Samurai's Whirlpool mixer, proving code outlasts arrests.
  • Developers now work under constant surveillance threat, opting for silent builds over public roadmaps.
  • Technical gaps in wallets and post-quantum cryptography create exploitable privacy leaks for regulators.

The FBI’s arrest of the Samurai Wallet team was meant to be a knockout blow against Bitcoin privacy tools. Instead, it proved their resilience. Within days, an anonymous team forked the code into “Ashigaru” and relaunched the Whirlpool coin-mixing service. Pavel, a developer on the Ronin Dojo project, sees this as the core lesson: open-source software cannot be killed by arresting its authors.

Pavel, Ungovernable Misfits:

- Arresting the creators might slow the project down, but it doesn't delete the functionality from the internet.

- It turns a central point of failure into a game of whack-a-mole the state cannot win.

The enforcement action has permanently altered the developer mindset. Pavel expected a knock on his door the day his colleagues were arrested. There were no warnings or cease-and-desist letters - just handcuffs. The new strategy is to build quietly. “A key lesson from the Samurai case is to not publicly announce plans,” he notes, suggesting the team’s open discussion of decentralizing Whirlpool likely triggered the swift FBI action.

While the code is unstoppable, its privacy guarantees are fragile. Research from Bitcoin Optech highlights how tiny coding inconsistencies between wallets can strip away privacy enhancements like PayJoin. If one wallet uses a different default for a signature flag or nSequence value, chain analysts can easily partition which inputs belong to the sender versus the receiver. Armin argues that without standardization of these micro-behaviors, advanced analysis will continue to peel back transactional privacy.

The long-term cryptographic foundation for privacy is also in flux. The race for post-quantum signatures presents a dilemma: choose “Shrimps” signatures, which are small but require wallets to meticulously manage state, or opt for isogeny-based cryptography, which preserves Bitcoin's key-tweaking features but verifies 50 times slower. Each path introduces new risks - user error or network bottlenecks - that future regulators could exploit.

Beyond the immediate crackdown, a parallel movement is building privacy from the ground up. Shadrach, building the Archipelago mesh network, envisions a world where Cashu ecash certificates are printed and traded physically at Amish markets, bypassing digital surveillance entirely. He champions Nostr-based webs of trust for portable reputation, freeing data from corporate silos.

The takeaway is one of fragmentation and adaptation. The public-facing, venture-backed privacy project may be a relic. The future belongs to quiet forks, mesh networks, and protocols so simple they can be printed on paper.

PrivacyRegulationProtocol

By the Numbers

  • BIP 440VAR Ops budget proposallegislation
  • BIP 441Script opcode restoration proposallegislation
  • BIP 2130Wallet backup metadata format proposallegislation
  • 350 bytesShrimps signature size on primary devicemetric
  • 2.5 kilobytesShrimps signature size on imported devicemetric
  • 8 kilobytesShrimps worst-case fallback signature sizemetric

Entities Mentioned

CashuProtocol
EclairTool
FBIConcept
FountainProduct
GrapheneOSProduct
Jonas NickPerson
Lightning Dev KitTool
LNDTool
MoneroProtocol
MuSigConcept
NostrProtocol
PayjoinStandard
Samurai WalletConcept
SchnorrConcept
ShrimpsProduct
TaprootConcept
WhirlpoolConcept
White NoiseProduct

Source Intelligence

What each podcast actually said

Ungovernable Misfits
Ungovernable Misfits

The Code Lives On | THE UNBOUNDED SERIES: Dojo CoderApr 8

  • Pavel first used Bitcoin in 2015 at Paral Polis, a Prague café that only accepted Bitcoin, which framed the technology for him as a tool for freedom, not investment.
  • Pavel began contributing to Samurai's Dojo software in 2019 because it was written in JavaScript, a language he knew, allowing him to add features to the open-source node software.
  • Ronin Dojo remains active despite setbacks, with Pavel finishing a UI update that will reintegrate a transaction privacy analysis tool, similar to the defunct kycp.org site.
  • The Samurai team's arrest was a sudden escalation, moving directly to prosecution without prior cease-and-desist orders or app store removals.
  • Pavel says a key lesson from the Samurai case is to not publicly announce plans, as the team's open discussion of decentralizing Whirlpool likely triggered the swift FBI action.
  • Pavel believes the Bitcoin privacy movement lacks clear direction post-Samurai, with many users moving to Monero or giving up, though projects like Ashigaru continue the work.
  • Ashigaru is a fork of Samurai Wallet that demonstrates open-source code cannot be stopped by arrests; its team recently relaunched Whirlpool as an act of defiance.
  • Pavel notes Ashigaru's team communicates only via email, making public trust reliant on their transparency in documenting code changes and their rationale.
  • A recent Dojo update includes Soroban, a peer-to-peer network that routes transactions through random nodes to obfuscate their origin before broadcasting to Bitcoin.
  • Pavel recommends following Frank Corva, Econo Alchemist, and Max Tannehill for accurate information on the Samurai case and Bitcoin privacy.
  • Support for the arrested Samurai developers can be directed to ptprights.org, which accepts Bitcoin and fiat donations for their legal defense.
BTC MarketsPrivacyRegulationBanking
Bitcoin Optech
Bitcoin Optech

Bitcoin Optech: Newsletter #399 RecapApr 7

  • Jonas Nick details Shrimps, a post-quantum hash-based signature scheme where signatures are 350 bytes on a primary stateful device. If that device is lost, imported devices produce 2.5 kilobyte signatures, with a final 8 kilobyte fallback for catastrophic failure.
  • Shrimps and its predecessor Shrinks require wallets to be stateful, tracking an incrementing integer for each public key to count signatures. If this state is lost or corrupted, security breaks and the wallet must use a large fallback signature.
  • Conduition highlights isogeny-based cryptography as a promising post-quantum candidate because its structure allows key re-randomization. This enables BIP32-like hierarchical key derivation and Taproot-like key tweaking, features hash-based and lattice-based schemes struggle to replicate.
  • SkiSign, an isogeny-based signature scheme, has 65-byte public keys and 148-byte signatures. Verification is about 50 times slower than Schnorr or Dilithium, posing a potential bottleneck for full block validation.
  • Conduition notes isogeny cryptography relies on the supersingular isogeny path problem, a newer but well-studied assumption. He cautions that schemes like SkiSign and PRISM have complementary security proofs, making it hard to prove both secure simultaneously.
  • Armin describes how wallet fingerprints - artifacts like signature grinding, SIGHASH flags, and nSequence values - can break PayJoin privacy. Analysts can partition transaction inputs between sender and receiver by spotting inconsistent behaviors between collaborating wallets.
  • Explicitly stating SIGHASH_ALL in Taproot signatures is a wasteful bug that creates a fingerprint. Since Taproot defaults to SIGHASH_ALL, including the byte adds unnecessary transaction weight and identifies non-compliant wallets.
  • BIPs 440 and 441, part of the "script restoration" effort, are now published. BIP 440 proposes a VAR Ops budget for limiting script complexity, while BIP 441 proposes re-enabling disabled opcodes like OP_CAT within a new Tapscript version.
  • Pais proposes BIP 2130, a standard for wallet backup metadata formats. It aims to create an interoperable way to export and import not just descriptors, but full wallet state including labels, transaction history, and coin data.
  • Eclair 3269 adds automatic liquidity reclamation, closing idle redundant channels. It reduces relay fees over time and closes a channel if, after five days at minimum fee, payment volume stays below 5% of capacity and the local balance is over 25%.
  • LDK adds support for zero-channel-reserve channels, primarily for LSP-user relationships. This lets users commit their full on-chain balance to a channel, shifting the trust and risk onto the service provider.
  • LND implements proper MuSig2 nonce handling and RBF support for cooperatively closing simple Taproot channels. The update hardens the protocol against nonce reuse, which could expose private keys.
ProtocolPrivacy
No Solutions
No Solutions

No Solutions

20: Archipelago Meshtadels w/ ShadrachApr 2

  • A decentralized house-sharing model using Nostr involves anonymous blobs for travel requests, agent responses, Bitcoin escrow, and QR code check-in/out.
  • Shadrach advocates a 'demand-based economy' where buyers broadcast their needs (e.g., looking for a lamp), and sellers respond to encrypted Nostr blobs, reversing traditional advertising.
  • Nostr has proven to be an effective, modern implementation of a web of trust, overcoming the usability issues that plagued earlier technologies like PGP.
  • Modern privacy-focused communication apps like White Noise, MLS, and PECA leverage Nostr for contact lookup and handshakes, then use signal-level encryption for actual communication.

Also from this episode:

AI & Tech (2)
  • The Podcasting 2.0 specification, combined with advanced AI models, can automate tasks like XML script production and value splits for podcast monetization.
  • New protocols like the A to B protocol (co-written with Jesus) enable interoperability between different ride-sharing projects (Routester, Drivester, Trotter) through shared primitives.
Nostr (5)
  • Spencer suggests venues adopt Nostr N-Pubs to cryptographically sign and manage live event streams, decentralizing control from individual artists.
  • Host suggests that social signaling, similar to in-game cosmetic purchases, could boost value-for-value (V4V) adoption on Nostr and Podcasting 2.0 platforms.
  • Community job boards built on Nostr can allow users to earn reputation, starting from simple tasks like mowing lawns at 12 years old and progressing to ride-sharing.
  • The Sap Store functions as a primary app store for many users, indicating the viability of decentralized, web-of-trust-based app distribution.
  • Marty Malmi demonstrated a Nostr VPN where devices connect via N-Pubs, enabling easy setup of private networks and shared exit nodes.
Culture (5)
  • Shadrach observed that many musicians are disillusioned with making money directly from music sales, instead relying on merchandise or concert tickets.
  • The Austin music scene operates on a 'pay to play' model, requiring artists to pay venues for performance slots and then cover costs by selling tickets.
  • Shadrach moved to Lancaster, Pennsylvania, motivated by concerns for food security and the resilience of the local Amish community in producing food.
  • Indie Hub, Archipelago's first major partner, is an open, decentralized platform for independent films, where directors set dynamic pricing and distribution is peer-to-peer via torrents.
  • Filmmakers can use Indie Hub to upload movies, set free periods (e.g., two weeks), then charge Sats (e.g., 21,000) with automatic price halving every six months.
V4V (4)
  • Despite efforts from figures like Adam Curry and projects like Open Mic, value-for-value (V4V) models have struggled to gain traction among musicians.
  • Open Mic aims to establish 30 V4V-enabled venues across the US to facilitate coordinated concerts and content distribution.
  • Shadrach's first experience with Podcasting 2.0 was boosting podcasts via the Fountain app around 2018-2019, predating his awareness of Adam Curry's initiative.
  • Value-for-value (V4V) models are highly effective because, similar to a Pareto distribution, a small number of generous donors can significantly fund projects.
Mining (2)
  • Shadrach's background includes industrial Bitcoin mining in Texas from 2017 to 2018, as well as Monero mining using CPUs.
  • Bitcoin miners who invested millions in S9 hardware in 2017-2018 found their equipment became scrap metal within 18 months due to rapid obsolescence.
AdoptionPrivacyProtocolNostr

Related Stories