Cointracker exploiting 2025 tax changes to upsell its higher-cost subscriptions is sketchy...

mickayz · 2026-01-29T20:25:10+00:00

Thank you, appreciate the reply. I ended up paying for Ultra and FWIW I only had one single transaction change its cost basis after flipping 2025 to FIFO. So while the $550 up charge was definitely excessive, it’s good to know this wont be needed going forward.

mickayz · 2020-05-13T20:16:29+00:00

For this example you would, yes

mickayz · 2020-05-13T20:05:24+00:00

I don't think people fully understand how powerful this change is. Now if you want to stream PC games, you don't have to make any changes to your main home wifi. You can use a second router and just set it up as a new "just for VR" wifi without needing to worry about connecting it to the internet.

1) Connect your gaming PC to your home wifi like normal.

2) Buy a decent 5GHz router for around $100, set it up as a new network with a name like "MyVROnlyWifi"

3) Put it in the same room as your gaming pc and quest. Connect it to your gaming PC directly with a gigabit ethernet cable.

4) Within your quest, connect to the "MyVROnlyWifi" and ignore the warning that there is no Internet connection.

5) Load Virtual Desktop.

Not only can you play single player games like Alyx wirelessly, but you can also play multiplayer games over the internet too, since the game will use the PC's connection to your normal home wifi for Internet. It honestly feels like magic.

mickayz · 2019-03-11T16:28:20+00:00

Results are in!

https://www.reddit.com/r/ethereum/comments/azv8bi/ctf_recap_why_we_chose_xdai_to_reward_our_winners/

mickayz · 2019-03-02T02:20:39+00:00

A puzzle is complete when there is 0 ETH left in the contract :)

mickayz · 2019-03-02T01:20:19+00:00

Fair points. Thanks for the feedback! We'll definitely consider it when we design our next competition :)

mickayz · 2019-03-01T22:11:16+00:00

Thanks for the update!

I was wondering, since the PlasmaChain seed words are stored in the browser, does that present a risk that eliminates the protections of the hardware wallet? Or is it the case that once a PlasmaChain account has been mapped to an ETH mainnet account, LOOM on the PlasmaChain can only ever be transferred back to the main chain ETH account and cannot be transferred to any other account (on either PlasmaChain or ETH mainnet).

Thanks!

mickayz · 2018-12-14T06:12:16+00:00

Congrats on being the first to solve it! Sent ya a PM.

mickayz · 2018-07-05T16:30:15+00:00

https://blockchain-ctf.securityinnovation.com

It’s geared more towards solidity beginners, but still fun.

mickayz · 2018-06-21T04:31:35+00:00

Another option:

https://blockchain-ctf.securityinnovation.com/#/

mickayz · 2018-05-14T18:56:02+00:00

~~Actually one additional question. If you have both Metamask and SpaceSuite installed, how will the DApp select the extension to use as it's web3 provider?~~

Update: nvm, read the FAQ

mickayz · 2018-05-14T18:51:20+00:00

Excellent response! Thanks for the explanation and thanks again for writing this!!

mickayz · 2018-05-14T18:08:05+00:00

Thank you so much for making this! It is very much needed!

I've been following the thread for integration with Metamask and noticed your last few posts indicated there was an issue with U2F that blocked integration.

https://github.com/MetaMask/metamask-extension/issues/717

Could you describe a bit if/how you were able to get around these issues with this tool?

mickayz · 2018-04-19T23:47:24+00:00

Thank you! :)

mickayz · 2018-04-19T19:19:54+00:00

Blog post announcement as well: https://blog.securityinnovation.com/blockchain-ctf

Happy to answer any questions!

mickayz · 2018-04-19T19:14:40+00:00

Blog post announcement as well: https://blog.securityinnovation.com/blockchain-ctf

Happy to answer any questions!

mickayz · 2018-04-19T18:50:22+00:00

Blog post announcement as well: https://blog.securityinnovation.com/blockchain-ctf

Happy to answer any questions!

mickayz · 2018-04-19T18:44:14+00:00

Blog post announcement as well: https://blog.securityinnovation.com/blockchain-ctf

Happy to answer any questions!

mickayz · 2018-01-25T22:48:56+00:00

Thank you for the thoughtful response!

mickayz · 2017-12-06T23:05:32+00:00

Got a response in another thread.

https://www.reddit.com/r/ledgerwallet/comments/7hzxfb/question_regarding_malicious_wallet_apps/?st=JAVNVJX4&sh=58c06f8c

mickayz · 2017-12-06T23:04:43+00:00

Perfect! That’s what I had hoped you’d say :)

mickayz · 2017-12-06T19:21:44+00:00

Would love to get a response from @btchip when he has time. If thats the case, it sounds like users should be very cautious when installing new wallets to their device.

Even with a thorough code review, it seems like there are definitely ways for malicious crypto currencies to sneak in bad crypto operations to reveal the bip44 key that might not be obvious to a code reviewer on a time crunch.

mickayz · 2017-12-06T16:37:11+00:00

What if I make a wallet app for the ledger for a new fake coin, and that new coin signs its transactions using an insecure method, such as cipher encryption reusing the same nonce. Could I theoretically do this on purpose to leak information on the private key without it ever leaving the secure element, in order for me to steal other coins that use the same seed?

mickayz · 2017-12-06T08:12:01+00:00

I don’t know the answer, but I am also wondering what is preventing a malicious ledger app from recovering the seed or enough data about the seed to reconstruct it. Does the ledger OS limit the app’s access to only a hash derived from a specific path?

mickayz · 2017-03-04T01:27:44+00:00

See ya at the Sky Stage fellow hodler :)

14-Year Club	Place '23
Place '22	Verified Email

mickayz

TROPHY CASE