-
@ Dikaios1517
2025-03-10 20:59:48
What do you mean by "hack" in the Nostr context?
The vast majority of data on Nostr is public, and users should always assume that anything they post that isn't encrypted is viewable by anyone. There are relay types that only allow white-listed npubs to read the data stored on them. I suppose these relays could potentially be "hacked" to gain access to unencrypted data the attacker was not intended to be able to see. This would have to be done on a per-relay basis, though, and would not constitute Nostr itself being hacked, just that one relay.
If you mean "hacked" as in someone being able to log into your profile and post as you, then that depends entirely on how careful you have been about where you store your nsec. No one is going to be able to brute-force calculate what your nsec is from your npub, for instance. Instead, they would need to gain access to the device or database where you have your nsec stored, or you would have had to paste your nsec into an app directly to log into it, or paste it into a malicious signing application, etc. Again, this would not constitute Nostr being hacked any more than you being careless with your Bitcoin keys would mean that Bitcoin was hacked.
Even the ddos attack mentioned before would not break Nostr. It would take a particular relay down, or a particular client, but that would be all.