Last Notes
Hodl. Coming soon.
https://video.nostr.build/29dbf5c3cc2a733a9d00dc915000203eefbc2037768d51901cd3a8c47ee47a36.mp4
#HodlShortFilm
#shortfilm
#filmstr
we're cooking in 2026. https://video.nostr.build/034b7e611b060de5799990ac898a6d35f28eeb71b277cfef842af023baec66ef.mp4
#aivideo
#shortfilm
#nomus
production stills!
https://image.nostr.build/43621f2d726d557f20687d46fe222322c541f890d8dcfc197b99ba339d596da8.jpg https://image.nostr.build/7fdd0b99cf631cdaaf73938553a1eafc73a0b1b90f7b25bdc70a28aba61ddd93.jpg https://image.nostr.build/dceb821467e0052518de59b550d0bd2e865448c84a29dd16a10834e431e8cc69.jpg https://image.nostr.build/1075a43a073a0b0151fc14218722472efac08f56e57e542df4850bbede35e345.jpg https://image.nostr.build/d3e9e9e57ca6f558edd869126e933a3890905e5e70c56c0f23face32224fbb3d.jpg
our site's getting a bit of facelift!
https://image.nostr.build/c80c887516a9f391d3c80d58dc4ba12e5e741ef62538f849cb78696b7ed31e7d.png https://image.nostr.build/456c1575362d8aa5c5bc4ecd177eea0d9fc1f8cac97a190963dcacf311b8ad31.png https://image.nostr.build/3df42124c4f03df153ac1754768ae1016324bbc1b69c7155242da80b7d24cca4.png https://image.nostr.build/186c7e887c05be88093af49f2304bcb74d50396d4c27bcf1fd2ade1be7549550.png
#nomus
#indiefilmmaking
Economists when the markets go the other way.
https://video.nostr.build/09cb9ea25bccc5743549461cf7d57963d19d9a4eda5a2dab400eb21be93a642c.mp4
#hodlshortfilm #shortfilm #aivideo
Я уже не помню, когда в последний раз чувствовал себя богатым, просто держа 𝐁𝐓𝐂. Теперь, когда он сползает, я снова испытываю это чувство бедности. Но это нормально, ведь такова психология трейдера. Мы склонны продавать победителей рано и держать проигравших вечно. И пока 𝐁𝐓𝐂 колеблется в зоне ни рыба ни мясо, я продолжаю курить в сторонке, задаваясь вопросом, когда же finally rekt.
#Крипта #Мемы #Ходл
I don't think DiVine would be a good showcase since there are no zap files.
Anyway, I'll think about it. Thanks for the feedback :)
Forks, not fixes — the market's new mantra. 𝐁𝐓𝐂 at 61k, neither here nor there. Traders, nervous smokers, waiting for the next 'feature'." (275 characters)
#𝐁𝐢𝐭𝐜𝐨𝐢𝐧 #𝐇𝐎𝐃𝐋 #𝐧𝐨𝐬𝐭𝐫 #𝐩𝐫𝐢𝐦𝐚𝐥
https://blossom.laantungir.net/0ee03242c2ec4fb3b29b1aeb755afb58cafd82513c68207d7f0865c4c39603a2.jpg
The data centres will still be there when public access AI is long gone - they will be repurposed into control centres for the Digitally Enslaved. The ones in space will be much harder for the resistance to fight against...
The other 5 nostr users were busy.
I don't support shitcoiners. I support bitcoin. I love bitcoin more than I hate shitcoins.
Also... I like to shill shitcoins to people I dislike.
It's nowhere near as bad, as it used to be.
Sugarbaby DMs and kind 1 randoms asking me to sit on their face. 🙄
It used to be intimidatingly, horrifically bad. Shit gave me nightmares.
a lawyer ....
I see the words “Germany” and “Munich Regional Court” ...
Yes, my jurisdiction ...
“Please don't hesitate to contact us with confidence ...”
Every case is a journey—you just have to take it.
A transparent look at the May 2026 exploit, the community response, and how the network recovered stronger.
On May 19, 2026, the Signum network faced one of the most serious security incidents in its recent history.
A crafted block exploited an integer overflow vulnerability in the Signum node’s block reward calculation. The result was extreme: approximately 140 billion SIGNA were credited to the attacker’s account in a single block — an amount far beyond the legitimate circulating supply.
At first glance, this could have been catastrophic.
But what happened next showed something far more important than the exploit itself: the strength, discipline, and speed of the Signum community.
Within the same day, the anomaly was detected, exchanges were contacted, emergency patches were released, pool operators coordinated, and a rollback process began. By the evening of May 21, the chain had reached consensus again. By May 23, exchanges had received the necessary CVE details and patch confirmation, and SIGNA trading resumed.
No legitimate Signum holder balance was affected.
This is the story of what happened, how the network recovered, and what we are improving next.
What Happened?
The exploit occurred at block 1,541,011.
An attacker crafted a malicious block that abused an integer overflow in the block reward calculation. Because the crafted block still satisfied the Proof-of-Commitment consensus rules on vulnerable nodes, it was initially accepted by parts of the network.
Shortly after the block was mined, community member ANGiS noticed an absurd account balance and detected that funds were starting to move toward exchanges. ANGiS immediately escalated the issue to frank_the_tank and ohager.
That early detection was critical.
It gave the team and the community enough time to act before the situation could spiral further.
The Root Cause
The vulnerability was introduced in the context of the SMART_FEES hardfork, which added fee cash-back and burn accounting to Signum’s block reward calculation.
In the affected versions, some arithmetic operations were performed using unchecked Java long calculations.
The vulnerable logic looked like this:
rewardFeesNqt -= block.getTotalFeeCashBackNqt();
rewardFeesNqt -= block.getTotalFeeBurntNqt();
By setting totalFeeCashBackNqt to a very large negative value, the attacker caused the reward calculation to overflow into a large positive value. That inflated reward was then credited directly to the miner account.
The issue affected Signum node versions:
signum-node >= 3.9.0 and < 3.9.8
The vulnerability was later registered as:
CVE-2026–48486
The Immediate Response
Once the issue was confirmed, the response moved quickly.
Exchanges were contacted and asked to halt SIGNA trading and deposits while the investigation was ongoing. This prevented further damage and limited the internal accounting impact for exchanges.
On the same day, two releases were published:
v3.9.7 was an emergency containment release.
It temporarily blocked the malicious account through the configurable node.accBlocking property, preventing further exploitation.
v3.9.8 was the root-cause fix.
It replaced vulnerable fee arithmetic with overflow-safe operations and introduced explicit rejection of invalid negative fee fields.
The response was public and transparent. The malicious account, the blocking mechanism, and the code changes were visible in git history. There was no silent patching and no attempt to hide the incident.
That transparency matters.
In decentralized systems, trust is not created by pretending that incidents never happen. Trust is created by responding quickly, communicating clearly, and fixing the root cause in public.
The Rollback
Because parts of the network had accepted the malicious block, a coordinated rollback was required.
Pool operators and node operators worked together to roll the chain back to before block 1,541,010. Operators still within the 1,440-block rollback window could perform a popOff through the API. Nodes outside that window required a full resync.
During testing and recovery, another issue appeared: some nodes performing a full resync from genesis encountered a non-deterministic fork-resolution bug introduced by the v3.9.8 patch.
This led to the release of v3.9.9 on May 21.
v3.9.9 completed the fix by adding a block-version-4 requirement for burnt-fee validation and correcting the chain-restoration logic.
By the evening of May 21, the network had stabilized and reached consensus again.
Impact
The exploit credited approximately 140 billion SIGNA to the attacker’s account in a single crafted block.
However, the coordinated rollback fully invalidated the fraudulent on-chain balance.
Most importantly:
No legitimate Signum account or holder balance was affected.
There was, however, temporary disruption:
SIGNA trading and deposits were suspended from May 19 to May 23.
Some exchanges that received attacker deposits before the trading halt experienced internal ledger divergence between their own records and the rolled-back canonical chain. These cases were resolved through direct coordination between the exchanges and the Signum team.
What Was Fixed?
Three releases were part of the incident response:
v3.9.7 — Emergency containment
The malicious account was temporarily blocked through node.accBlocking to prevent further exploitation.
v3.9.8 — Root-cause fix
All vulnerable fee arithmetic was replaced with overflow-safe operations using Convert.safeAdd() and Convert.safeSubtract().
Blocks with invalid negative fee fields are now rejected during block acceptance.
Fee totals are also validated against per-transaction sums.
v3.9.9 — Complete recovery fix
A block-version-4 requirement was added for burnt-fee validation, and the non-deterministic chain-restoration bug affecting full resyncs was fixed.
All operators should now run: v3.9.9 or later
What We Learned
The response worked. The network recovered.
The fraudulent balance was invalidated. Exchanges reopened.
But this incident also revealed areas where Signum must improve.
1. Emergency communication must be faster
Some key pool operators were difficult to reach quickly.
In a rollback situation, time is measured in blocks.
A dedicated emergency channel for major pool operators and infrastructure providers would reduce response time significantly.
2. Vulnerability disclosure needs a formal process
This incident was handled successfully, but still too much of it was improvised under pressure.
Going forward, Signum should formalize the use of GitHub Security Advisories or a similar process for coordinated disclosure, private patch development, CVE handling, and exchange communication.
3. Anomaly detection should be automated
The incident was detected because a community member noticed something unusual.
That was fortunate.
The next step is automated monitoring for abnormal block rewards, suspicious supply changes, and other values outside expected ranges. Human vigilance is powerful, but critical alerts should not depend on someone randomly seeing the anomaly first.
A Community That Showed Up
Signum has no company behind it.
No centralized foundation with a professional incident-response department. No VC-backed security team waiting in the background.
What Signum has is something different: a community that moves when it matters.
Special thanks go to:
ANGiS for first detection and immediate escalation.
frank_the_tank for exchange coordination, pool operator outreach, and rollback orchestration.
ohager for root-cause analysis, patch development, and the rapid release of v3.9.7, v3.9.8, and v3.9.9.
pir8Radio from Nam Pool and Shadow from OG Ro-Pool for critical contributions to chain stabilization.
Balazs for post-incident analysis and ongoing hardening work.
And all pool operators, node operators, exchanges, and community members who acted quickly under pressure.
This was not just a technical recovery.
It was a community recovery.
Final Thoughts
Security incidents are never good news.
But they are also moments of truth.
They show whether a project hides, delays, blames, or acts.
In this case, Signum acted.
The vulnerability was identified.
The exploit was contained.
The chain was restored.
Legitimate balances were protected.
The root cause was fixed.
Trading resumed.
And the hardening work continues.
Signum is not stronger because the incident happened.
Signum is stronger because of how the community responded.
Transparent. Fast. Decentralized. Together.
That is what this network is built on.
Discover Signum
Signum is the world’s first truly sustainable blockchain, featuring world-class applications on a sustainable, leading-edge blockchain architecture. Unlike other cryptocurrencies, Signum powers its native cryptocurrency Signa (SIGNA), with a minor fraction of energy use and e-waste. Signum empowers users and developers worldwide with innovative blockchain solutions for everyday life.
Find out more at https://signum.network/or join a Signum channel below.
Get SIGNA : https://signum.network/exchanges
Twitter
Telegram
Discord
Reddit
Youtube
Documentation
NFT-Portal
Defi-Portal
Your
SIGNUM-NETWORK
Signum
Blockchain Security
Proof Of Capacity
Decentralization
Cryptosecurity
Some rights reserved
Follow
Published in Signum-Network
89 followers
·
Last published Apr 17, 2025
Signum is the foundation for our sustainable future. It’s easily accessible to everyone and as a customizable platform, it has the power to feature unstoppable and censorship-resistant decentralized applications.
Follow
Written by Signum
170 followers
·
12 following
Join the movement! https://signum.network
No responses yet
Watch and learn how this plays out. You'll either turn tk shitcoining or leave the place entirely.
Good luck
kill_test_after_shard2_dead
kill_test_after_shard0_dead
Биткоин — это вечный сизиф. Каждый раз, когда он поднимается на вершину, его сбрасывают обратно в долину. Но в отличие от Сизифа, биткоин не теряет своей ценности при падении. Он просто ждет следующего цикла, чтобы начать все сначала. Так что, друзья, если вы хотите играть в эту игру, будьте готовы катить свой биткоин-мешок в гору снова и снова.
#Крипта #Мемы #Ходл
nostr_redundancy_test_nr_agent_0_1
nostr_redundancy_test_nr_agent_2_3
nostr_redundancy_test_nr_agent_0_4
nostr_redundancy_test_nr_agent_2_4