The Frontier

Peter St Onge recommends CoinKite hardware wallets for securing Bitcoin offline. He notes their devices are made in Canada by Bitcoiners active since 2012, including the Block Clock.

Peter St Onge endorses Abundant Minds for simple Bitcoin mining, allowing investors to own machines and deduct expenses, calling it a "401k for Bitcoin mining." The company provides turnkey hosting in Oregon with guaranteed uptime.

Peter St Onge recommends The Bitcoin Way for achieving proper Bitcoin self-custody, covering privacy, inheritance, and running a personal node. The service guides users step-by-step without ever handling their Bitcoin directly.

Jake Woodhouse emphasizes that time is a business owner's scarcest asset, drawing a parallel to Bitcoin's scarcity as a financial asset.

Bitcoin's digital signature scheme uses 256-bit elliptic curve cryptography, significantly more complex than the 15-bit key broken, with experts divided on how quickly quantum systems can scale to real-world levels.

Foundation Devices' new Passport Prime device offers significantly easier onboarding; Max reports concierge calls now take 30 minutes, half the time required for the older Passport Core device.

BIP 361 proposes a three-phase soft fork to address quantum computing risks, aiming to secure Bitcoin against potential attacks that could exploit public keys.

The BIP 361 proposal notes that 34% of all existing Bitcoin has its public key exposed on the blockchain, making those funds theoretically vulnerable to sufficiently powerful quantum computers.

Academic roadmaps suggest cryptographically relevant quantum computers could emerge as early as 2027-2030, intensifying concerns about Bitcoin's long-term security.

Q expresses concern that BIP 361's forced migration or loss of funds contradicts Bitcoin's core ethos of permanent self-custody and could lead users to make mistakes.

A hacker stole 50.903 Bitcoin, valued at $3.9 million, from Bitcoin Depot's wallets by compromising credentials for digital asset settlement accounts.

Nunchuck released CLI and agent skills tools, enabling AI agents to safely operate Bitcoin wallets within multi-signature and miniscript setups, ensuring user control and policy-based spending limits.

A $280-$300 million exploit of KelpDAO's LayerZero bridge implementation, attributed to Lazarus Group, caused $200 million in bad debt for Aave, marking the first large economic exploit involving the protocol.

Arbitrum's Security Council, a 9-of-12 multi-sig, froze and recovered $70 million of the stolen ETH from the KelpDAO exploit, an unprecedented asset seizure on a Layer 2, done in communication with law enforcement.

The 'Productive Money Thesis' for Ether, by the Ethelize team and Mike McGinnis, synthesizes Carl Menger's money attributes with Warren Buffett's focus on productive assets, arguing ETH is a productive money.

Harry Halpin cites Len Sassaman's critique that Bitcoin's inventor overlooked traffic analysis's power to deanonymize and control users. He argues blockchain technologies without privacy exacerbate these risks.

Amir Taaki provides practical privacy tips: Tor Browser, Linux, GrapheneOS phones, randomizing IMEI, and portable routers with BlueMer. He also suggests nanoGPT for anonymous AI access and Onionmail.org with Monero for email.

US Admiral Paparo told Congress that the US military runs a Bitcoin node and sees "incredible potential" for national security, echoing the Jason Lowery thesis of Bitcoin as a power projection tool.

Odell argues Bitcoin is a national security asset because it blocks Chinese currency dominance, makes American citizens resilient, and incentivizes energy generation crucial for AI infrastructure.

Tether froze over $344 million in USDT across two Tron wallets in coordination with OFAC and US law enforcement, bringing its total frozen assets to over $4.4 billion from more than 340 agencies.

Scammers posed as toll collectors in the Strait of Hormuz, demanding Bitcoin or stablecoins from ships, some of which paid and then faced warning shots from the IRGC, highlighting high-stakes crypto scams.

Nunchuk now supports Coldcard HSM, allowing Bitcoin agents to sign transactions based on a predefined rule set, ideal for securing large funds without constant manual oversight.

Mempool version 3.3 introduced advanced Bitcoin features, including support for sub-1 tap for v-byte, ephemeral dust, decimal fee recommendations, and enhanced Taproot script visualization.

The price of one Bitcoin is $78,040, resulting in a total market capitalization of $1.56 trillion, while the network's hash rate stands at 943 exahashes per second.

Bitcoin conferences, especially in locations like Las Vegas, are breeding grounds for criminals. Wayne Dost advises attendees to avoid discussing Bitcoin holdings, be mindful of public Wi-Fi, vet meeting locations, and maintain situational awareness regarding exits and potential non-crypto-related threats.

Odysseus emphasizes that crypto hacks are irreversible "physics events" that cause systemic damage, contrasting with TradFi's longer settlement times that allow for recovery.

Ryan details the April 18th KelpDAO hack, attributed to North Korea's Lazarus Group, which exploited LayerZero to mint 116,000 unbacked rS-ETH tokens.

The minted rS-ETH was deposited into Aave on Arbitrum and Ethereum, allowing the attacker to borrow $236 million in wETH and leaving Aave with $280 million in bad debt.

Following the exploit, Aave experienced $5 billion in ETH outflows, including $150 million from Justin Sun, and its TVL dropped from $26 billion to $17 billion due to panic withdrawals.

The Arbitrum Security Council controversially recovered $70 million in stolen ETH through a DAO governance vote, seizing assets and challenging layer-two immutability principles.

Ryan notes that Aave currently has 100% utilization for ETH, USD, and USDT, effectively freezing withdrawals due to insufficient liquidity. Dan Elitzer anticipates Aave will recapitalize.

Odysseus views Arbitrum's recovery as positive but cautions it sets a negative regulatory precedent, undermining rollups' arguments for L1-like treatment under legislation like the Clarity Act.

Ryan posits the "code is law" principle was unsustainable for L2s, arguing the Arbitrum recovery marks an inevitable shift towards human governance and a "TradFi era" for crypto assets.

The Volo protocol, a DeFi platform on the SUI blockchain, suffered a security breach that drained $3.5 million from three yield-generating vaults, contributing to over $10 billion in total losses across DeFi and bridge protocols.

Admiral Samuel Papparo, Commander of the United States Indo-Pacific Command, called Bitcoin a valuable computer science tool for national power and security, emphasizing its peer-to-peer, zero-trust transfer of value.

DoorDash plans to offer stablecoin payments to its dashers and merchants via Tempo Blockchain, citing benefits like faster payouts, lower cross-border costs, and transaction flexibility for its users across more than 40 countries.

A16z Crypto-backed Jensen launched Delphi, an AI-settled 'information markets' platform built on Ethereum's OP Stack, aiming to offer niche, creator-owned markets resolved by verifiable AI models and generating revenue for creators and the network's native AI token.

Marty Bent highlights the Bitcoin Scaling Conference in New York, a third annual event by Blockspace, focused on Bitcoin tech and finance.

Marty Bent introduces BitKey, a hardware wallet designed for easy Bitcoin self-custody with a 2-of-3 multisig setup, where one key is on the device, one on mobile, and Block stores the third.

Unchained, a collaborative multi-sig custody leader, secures over $12 billion in Bitcoin for more than 12,000 clients, equating to roughly one out of every 200 Bitcoin.

The solution to pervasive AI-generated content is a new stack built on cryptography and on-chain data, moving from institutional trust to provable truth that anyone can verify via mathematics.

The verification gap necessitates a new paradigm where identity, authority, and credentials are proven cheaply and difficult to fake, potentially increasing demand for such services by 10-100x.

Balaji highlights examples of cryptographic proof, including Tesla's vehicle logs refuting a New York Times story and a Chinese court accepting Bitcoin hash values as evidence of content production eight years prior.

Farcaster, an on-chain Twitter-like protocol, exemplifies how more social data can be recorded and verified on-chain, enabling AI agents to auto-generate bias-free narratives from raw, verifiable facts.

Luis introduces Utreexo, a UTXO set compression method allowing lightweight nodes like phones to run on Bitcoin, overcoming the limitations of Bitcoin Core's large UTXO set. This system relies on bridge nodes creating Merkle proofs for blocks.

Utreexod 0.5 is mainnet compatible, implementing BIPs 181, 182, and 183. It incorporates SwiftSync, which reduces initial block download (IBD) bandwidth for compact state nodes (CSNs) by 75% by only requiring proofs from the last 16 blocks.

Luis explains that Utreexod is a BTCD fork implementing bridge nodes, while Floresta is a from-scratch compact state node (CSN) implementation using the Kernel consensus engine. Floresta, running on Luis's router, consumes about 200MB of RAM and minimal storage.

The Utreexo model enhances wallet privacy by removing the need for third-party APIs like Electrum, which leak user addresses and IP. Compact state nodes instead act as normal Bitcoin nodes on the network.

Z-Man proposed "towards a K of N Lightning Network node" on Delving Bitcoin, aiming for multi-sig self-custodial Lightning wallets. This concept allows K-of-N signing for one channel side, using nested Musig2 and FROST.

Enabling K-of-N Lightning channels requires modifying the Bolt specification to make the "sha-chain" (revocation key handling) optional. This is due to derivation challenges with distributed key material in multi-signature setups.

Merch notes that Z-Man's Lightning proposals often involve complex, interactive designs. This approach circumvents the need for ANYPREVOUT or other covenant proposals, which Z-Man believes are unlikely to be adopted.

Coldcard 6.5.0 adds support for signing Musig2 UTXOs, BIP322 signed messages for Miniscript and Musig2 proof of reserves, Miniscript/Minitapscript, Taproot multisig up to eight leaves, and BIP-129 for secure multisig setup.

Bitcoin Core #34401 extends the `libbitcoin_kernel` API to serialize block headers into standard byte encoding. This enables external programs to compute block hashes directly without needing separate serialization code.

Bitcoin Core #35032 prevents the `private broadcast` option (using short-lived Tor/I2P connections for transactions) from storing learned peer addresses in the address manager. This enhances privacy by isolating connection information.

Core Lightning's 26.04 release has removed splicing from experimental status, making it a default and production-ready feature. This marks a significant upgrade in Core Lightning's implementation of the splicing protocol.

Core Lightning #9046 fixes KeySend interoperability with LDK by increasing the final CLTV expiry value (safety margin) from 22 to 42. This matches LDK's expectation for receiving KeySend payments.

LDK has promoted zero-fee commitment channels from experimental to production status. This feature replaces two anchor outputs with one shared `pay-to-anchor` output, offering more flexibility for future fee conditions.

LDK #4558 extends receiver-side timeout, previously for multi-path payments, to KeySend payments. This allows receivers to fail back stuck HTLCs and free up slots without waiting for a full CLTV expiry.

LND #9985 promotes simple Taproot channels to production status. It incorporates `OP_CHECKSIGVERIFY` for Tapscripts and improved map-based nonce handling linked to funding transaction IDs, serving as groundwork for future splicing.

BTCPay Server #7250 adds support for LNURL `withdrawRequest` (LUD-21), an unauthenticated endpoint. This allows external services to verify if a Bolt11 invoice, created via LNURL-pay, has been settled.