I often wonder to what extent scams like this have positive externalities, insofar as the people who get scammed were perhaps unlikely to allocate capital in socially efficient ways.
In an economy where companies prefer to invest in R&D with credit and buy back stock, purchasing equities seems less beneficial than stimulating demand by just buying stuff.
“Stimulating demand” is nonsense - applied Broken Window Fallacy.
The net effect of equity investment is to increase the amount of capital targeted towards the production of capital goods; i.e. deferring consumption makes humanity richer in the long term.
They now have a public, cryptographically protected record of their activities, available for inspection using automated tools by anyone who's interested, including law enforcement.
Interesting point. Would you rather have few unscrupulous, enterprising individuals have a significant proportion of wealth, or have this distributed between many people who are mentally challenged (easily conned)...
People who are smart and greedy have much more effective ways of satisfying their greed than investing in fly-by-night crypto schemes. This typically looks like selecting a career path based primarily on its expected return.
From a game theory perspective, I believe that dishonest players are always a net negative for all other players. It might seem that it's good when capital transfers from stupid to smart people, but actually it moves from honest to dishonest people, which results in less efficiency. All this capital is now used to perpetrate more scams, which means that more capital will be allocated to these scammers instead of something honest. And because of these scammers, all honest people have now less capital to work with.
A fair point - unless scams tend to be one-shot, it’s relatively likely that the capital accumulated from a scam will go towards unproductive ends (other scams). However, I still think it’s plausible that the allocation of scam profits is better than the allocation of scamee wealth. The sort of people who buy into NFT monkey rugpulls or whatever might just spend any surplus wealth on a new TV or something.
Do you have any evidence of that other than the parent link which looks kind of scammy? Everywhere else I have read that the minted $3B is not circulating yet, it's waiting for new purchasers of Tether. Not saying you are wrong by any means, I'm genuinely curious.
Tether mints the tokens upon deposit of fiat on Bitfinex exchange OR when the Tether peg increases above $1 too far. Users are incentivized to do this as well (deposit dollars onto bitfinex, get new tether for that 1:1, sell new tethers above the peg on the open market, pushing the peg down)
Circle/Coinbase use the exact same mechanism.
These kinds of stablecoins are destroyed only upon explicit redemption. Not when sold to someone else on the open market.
It’s not that different from a brokerage account’s deposits. People don’t actually withdraw that much because they don’t need that much cash. They keep their cash in those ecosystems waiting for other trading opportunities and add more from other sources into the exchange.
I know it’s absurd to assume tether functions as described, 99% of the time for 99% of the value. But the market is showing the same thing with stablecoins that are better governed.
For the decentralized/permissionless/uncensorable minded people, The best bet is for other kinds of stablecoins to grow faster
Yes, and although likely a scam, here's another datapoint:
Coinbase, an Y combinator unicorn, is behind Centre/Circle and the USDC stable coin. And there are now $41.5 bn USDC circulating.
At one point it was billion of USDT circulating and USDC didn't exist yet.
Then USDC began to took off and there were, out of memory, $5 bn USDC and $23 bn USDT.
But, overall, the trajectory is clear: USDC is growing faster than USDT.
It's $41.5 bn vs $76 bn today.
Maybe in a few months USDC shall catch up, then maybe even surpass USDT.
Do we all believe Coinbase and its Centre/USDC stable coin is a scam? It's an american company, with real people behind it. It's not some scammy thing in the Bahamas.
Now here's an intriguing question: if we believe Coinbase isn't a scam and that these $41.5 bn USDC are really mostly or all backed, does tether's $76 bn really look that unthinkable?
The problem with tether is not the amount minted/in circulation. The problem is that they definitely lied previously about their backing and are probably lying now. If you claim to be one of the worlds largest commercial paper holders yet no one knows whose commercial paper you are holding then that is suspicious. It’s unimaginable that a new large player entered the market and nobody noticed.
Americans who are under the watchful eye of a hostile SEC and face serious prison time if they get caught are much less likely to be scammers than some anonymous group from the Bahamas.
Issuing stablecoins isn't a scam by itself. The whole crypto ecosystem cashflow is the real scam. There is no liquidity. All it takes is a few people that panic and the whole thing falls apart, UNLESS there is someone ready to print money and prop up the market when panic sets in. That is why people need to understand what is going on with Tether. Bernie Madoff got shutdown because a whistle blower got the SEC to look at his books. If tether gets shutdown and no one is propibg up the market, it will crash hard.
China has banned Bitcoin several times, there’s been hacks, there’s been central banks going after crypto - yet it’s still here. Why do you believe the whole thing might fall apart?
What you’re missing is that whenever there’s panic selling there’s always someone on the other side finding a great discount.
That is what they said about housing in 2007. I'm not saying that crypto is going to go away and never exist. I'm saying it could go down by 80% during a liquidity crisis induced panic.
That's reported as a drop from the peak. But it doesn't necessarily reflect the real losses, in terms of initial investment. It's a number larger than the total amount of "real" M0 money in 2000, for example! Feels more like "an unrealized gain that never materialized" than "loss".
I remember that time, it was just after I graduated. There was a lot of business craziness on a scale that defi is yet to reach, although it's already hit some of my peak markers like "rename a stadium".
So it seems like you are saying DotComs were a scam? Which is obviously insane. I believe we are seeing something similar in crypto. Yes to bubble, and yes there are scams, but wow it seems like there are a lot of people here that think the entire thing is a scam. There are a lot of insanely smart people working on this that are obviously not doing scams, maybe you should take a deeper look?
Agreed. Super-smart people made these systems possible. Sad to see many people associate crypto with scams and illegal stuff. Well, I've bought a tshirt with Ether and VPN subscription to access Wikipedia and YouTube, from a country that blocks many common VPNs. Super, illegal.
Let them keep saying crypto is scam, people who believe in it will win in the long run anyway.
I really hate to say it, but I have little sympathy for the victims here. They wanted a moon shot, wild west, libertarian paradise and got ... robbed with no recourse. Many more than once.
Completely agree. You want the libertarian paradise, then you should accept the risks that come along with it. Personally, I'm fine with having it being the wild west, and I only invest money I can afford to lose.
That's the easy thing to say, but unfortunately a lot of well-intentioned people are losing money, like they did with GameStop. That's not to say I'm shedding tears for everyone losing money, but the ones that should lose it are typically not the ones it's happening to.
How are people buying in to GameStop after it has gone up by 20 times in price not "the ones that should lost it"? They're obviously just trying to get rich quick, and knowingly taking a risk to do it. Who "should" lose the money in a case like GameStop? I can't think of any scenario where it's not the people jumping in late to try to make a quick buck.
edit: Initially I vastly underestimated how much GameStop stock went up
Indeed, but I don't think we're anywhere near the limit yet. I don't know about exponential growth, but I would predict at least double or triple the amount lost to scams in 2022.
(Barring some massive SEC/DoJ crackdown, or something. And even then, that'd only put a dent in it and would just scare away some US scammers. Most of the big ones are outside the US's reach.)
It’s not a problem. Once we switch to using sidechains for most of the book keeping we expect to be able to handle 1000x more scams without affecting the main scam.
We’re also looking at theft-of-stake instead of theft-of-work to reduce energy usage, allowing scammers to be much more efficient and green.
Unless something changes dramatically, DeFi will remain a haven for scams. It tries to mimic an actual economy which has loans to businesses to pay returns (etc), but DeFi actually is a giant circular digital economy which doesn't create real world wealth.
I've used DeFi and haven't been scammed. Fees being what they are now aside, I liked the experience.
As not being scammed goes, I just avoided everything that was super new (like a project 3 days old that already has $3b in TVL), avoided things that sounded super scammy (Most recent one coming to mind being SQUID token. I mean, come on), avoided things that had no real reason to be, avoided things that I didn't really understand despite research.
My most successful investments are those made in crypto winters, during "see? crypto's over".
> Isn't this true of the entire cryptocurrency cult though?
In the real world, "crypto holdings" are IOUs with a dynamic value of how much is being owed. This absolutely can create (and especially transfer) real world wealth.
This is my biggest complaint against cryptocurrencies in general.
I'm happy with my bank's fraud protection. How can crypto users protect themselves without recreating traditional banking?
Bitcoin was released ~13 years ago, and wallet/transaction security has been one of the most important requirements since then (along with scalability, but let's not go there). If trillion dollar market caps and god-knows-how-many billions of investment couldn't figure out how to protect consumers after 13 years...
I think the way you protect yourself is the same way people protected themselves before credit cards were widely used. By not spending your cash on things that are scams. Somehow people managed to survive before banks offered their rent seeking / fraud protection and I think they'd be OK without them if push came to shove.
Commercial banking is four centuries old. https://en.wikipedia.org/wiki/Banca_Monte_dei_Paschi_di_Sien... ; the modern world is built around banking as much as it is around the limited liability corporation. The basic borrow short/lend long business of a bank is not going anywhere.
Mind you, it's worth noting that MPS had four centuries of independence before listing itself on the stockmarket and losing its independence comparatively shortly afterwards in the 2008 crisis.
There are other ways to protect payments than just (rent seeking) CCs. For eg, in India UPI equates to irreversible zero-cost instant bank transfers (and the irreversible part incentivizes scams) - the KYC/AML regulations make getting your money back a possibility (while not impossible, it's usually improbable, and depends on the amount)
Bernie Madoff's victims were mostly high net worth individuals (dumb money), not professional investors. While professional investors do occasionally get scammed that's much less common.
> Somehow people managed to survive before banks offered their rent seeking / fraud protection and I think they'd be OK without them if push came to shove.
People routinely fell victim to fraud. Why else would the government have introduced bans for ponzi schemes or regulatory requirements to go public with stocks, if not to reduce the amount of fraud?
Just because an entity uses "crypto" instead of "US dollars" it should not be absolved from the requirements of established players, they were instantiated for damn good reasons.
One could, for example, create a smart contract that has protection mechanisms in place. At the end of the day, smart contracts are programmable, so you could code your own which has appeal mechanisms as consumers are used to. For example, one could create a highly insecure website for payments on the Internet. The problem is not the Internet, it is the insecure website.
>- The scams are online, so I cannot knock on the scammer's door with an angry mob and ask for our money back.
>- Pseudonymous identities means scammers have strong protections against being sued or prosecuted.
>- Complete lack of trusted third parties means there's no one to appeal to, or to raise alarms in suspicious cases.
I think that all these things are not fundamental aspects of crypto, but rather how the user chooses to use crypto. If I wanted to I could use crypto only for buying eggs from the local market, or paying a plumber to do some work for me, etc. Scams have existed for decades that involve essentially mailing cash to people that fit the criteria you listed - it's not an issue with cash, but an issue with how people are transacting (with remote unidentified people).
>- Digital wallets, as opposed to cash in bank vaults, means that you can lose all your savings in one mistake.
This is no longer strictly true, at least for loss of wallet keys. There are all sorts of solutions out there (Argent, for example) that allow you to have 'fallback' key methods for if your main key is lost. Yes, if you mistakenly send all your money to the wrong address in crypto you lose it, but that was true of cash as well. Once you spend it it's gone.
In the US, banking scams and crashes were very common before the various reforms enacted in the early 20th century. Wildcat banks in the west printed money with reckless abandon, which quickly became completely worthless. Bank runs were pretty common, due to a low overall confidence in the banking system. And a worker in 19th century America was lucky if they were paid in actual money, instead of a company scrip.
We've seen oppressive regimes shut down cryptocurrencies when threatened by them. The remaining argument in favor of crypto boils down to "the problem with traditional currencies is that people who aren't me have too much of them"
Well, in Germany perhaps soon some banks will hold cryptos for their clients [0]. I would imagine these banks would offer some kind of fraud protection for the crypto assets they will hold, likely at some cost.
I believe in the USA there was already some legislation passed some time ago that would allow banks to be custodians of crypto-currencies?
This probably is the solution - as cryptocurrency advocates like to say, "not your keys, not your coins", but for certain people an IOU from a bank saying that the bank owes them some coins is preferable to having the actual coins and the benefits+risks associated with that.
It's similar to stocks and bonds - you could own them yourself, but for not-huge private investment it's often simpler to have a financial institution hold them on your behalf.
Okay, invest in a top 40 crypto. Defi scams usually involve outrageous APR and reward claims from a sketchy Telegram channel actively trying to recruit ignorant or vulnerable individuals. Same as every other scammer, but with the new and improved hype words
I don't want to speculate in cryptocurrencies, I want to use them for their intended purpose, financial transactions. The problem is that I can't do that at anywhere near the safety of my traditional banking institution.
Of course, a lot of cryptocurrencies aren't really meant to be used as currencies. So here is that. Also there are companies that offer insurance on your crypto.
Granted, but every new technology goes through this and the tools and best practices are improving. The code is open source too. I don't know why people, technologists especially, aren't recognizing this.
It's also worth examining the current system. How happy are you with your bank's 0.01% interest rate? Which is actually negative when you factor in inflation that's eroding the value of our dollars faster than ever, and increasingly transferring wealth to the top 1%? How happy are you about bank CEO compensation and bailouts? No one in crypto is asking for a bailout, even when it crashes 80%. And what about the fact that bank's charge poor people the most or flat out deny service? Or the fact that it's all closed source and behind closed doors.
Normal individual transactions are secure. I can send money to Bob without worry that someone is going to somehow use the data in that transaction to steal my entire wallet.
The "rug pulls" you see are from contracts written maliciously. DeFi is a ponzi scheme written into a Smart Contract, but some of them have an extra function that allows the creator to instantly steal all the money out of it.
For a very narrow definition. You still need a way to get Bob's wallet address, and to secure your own wallet. Just look around and you'll see plenty of experts failing to do that correctly.
> The "rug pulls" you see are from contracts written maliciously.
And the contracts, being from DeFi land, are immune from chargebacks or legal prosecution. Regular old fraud, made exponentially more damaging because of cryptocurrencies.
> For a very narrow definition. You still need a way to get Bob's wallet address, and to secure your own wallet. Just look around and you'll see plenty of experts failing to do that correctly.
Fair enough. A transaction is secure, but the wallets might not be. If you rely on a 3rd party to host your wallet (ie, Coinbase), then you risk your money being stolen when they get hacked. If you host it yourself, then you risk losing the keys unless you make a backup, and the backup could get lost, or if you store it in cloud storage, it could get stolen there.
Credit cards are harder to secure than wallets IMO, but at least with CCs, you have recourse in the case of fraud.
Cryptocoins are deliberately based on the concept of money reduced to "cash". There is no banking, there is no fraud protection. It is supposed to work that way.
The whole at least somewhat civilized world has moved to a more advanced versions of money, but cryptocoins are a step backwards and it is entirely intentional.
No, cryptocurrencies are reduced to "mailing cash to an anonymous postbox", which has a lot fewer guarantees. I'm happy giving cold hard cash to buy something from a brick-and-mortar store to be delivered in the future.
There are <0.0001% of the population who understand transaction risk.
If I pay $Cash for Goods, In a trustless network, both side of the exchange have to be instantaneous. I can never pay cryptocurrency for any item that are not verifiable by the network itself, unless there is another trusted 3rd party (cough cough, Credit Card Processors/Banks).
>How can crypto users protect themselves without recreating traditional banking?
They could just invest in well-established projects with proven technology instead of obvious scams in hopes of a "moon shot". This has very little to do with Bitcoin and other legitimate projects, which are a far cry from useless fly-by-night ERC-20 tokens with stupid animal names
There are plenty of ways and tools for the scammers to be tracked on a public blockchain. Tokens are not worth much until they are exchanged for fiat currency. The authorities do not want to chase after them, yet, but anyone engaging in such fraud is leaving plenty of evidence on public, cryptographically protected blockchains to provide evidence that's difficult to repudiate. Sooner of later those responsible will be brought to justice.
I am working with people in the banking industry to add a layer of protection without compromising core values of crypto (permissionless, trustless), but funnily enough they do not want to do anything against the regulators. Retail banks have become very cautious after 2008 and won't do anything unless they are told to do it by the regulators. And the regulators are a bit clueless, tbh.
No. The person I replied to wanted a traditional bank in the crypto space. I told them how to replicate it.
If you didn't notice the total crypto market cap is 2 trillion dollars. People are happy with the way crypto works, most don't want it to be like a bank, but for those that do there is ways to make it so.
Right. I did that. And got scammed. I had my BTC in a trusted exchange at the time. Then they dissappeared on me. Then I was told it was my own fault for using an exchange. You just can't win this game can you..
ding ding! If you keep it in exchange and it gets stolen, it's your fault for daring to trust your fellow human. If you keep it yourself and it gets stolen, it's your fault for not having a multisignature hardware wallet stored in 5 different countries with armed guards.
Ok i'm exaggerating of course, it just seems like some people are not willing to admit that cryptocurrency does not address certain things that people want out of a money/payments system.
Everyone should be worried about that, and if your suggestion is to use exchanges, that just makes them de-facto banks. Now you have a traditional banking system on top of a slow and expensive settlement layer.
I do, regularly, and it takes a few dollars and a few days to arrive. That sucks. But this comes from following regulations, and fees for the useful service (e.g. protection).
Right now international cryptocurrency transfers are a legally gray area, and have the aforementioned lack of protections. So the expensive and slow, but legal and safe, international transfers are a service that cryptocurrencies don't offer at all. No reason to think it'll be faster and cheaper when it's offered.
Even within the US, ACH settlement times are 3 business days. The settlement period for stock trades is 2 business days and there's a big push to reduce it to 1. Relative to that, bitcoin's 10 minute settlement time isn't so long.
ACH settlement is same day if you know the sender won't reverse it - that's why banks have been depositing paychecks 2 days early starting this year. It'll be faster next year with FedWire.
Is that really that true any more? From my podunk credit union I have used SWIFT to send overseas and it took under a minute and cost me $20. That's both faster and cheaper than Ethereum transactions. It's costlier than Bitcoin but not that much, and still faster. And that's wire transfer, the expensive bank to bank option... Western Union has been faster than Bitcoin for decades and cheaper for probably a decade now.
The huge popularity of crypto is really eroding the tx capacity advantage.
And even in the backwards US, ACH can now settle later same day and it's free. That makes BTC a lot less attractive.
Try transferring money to a legitimate business in another country (in the EU) that got blacklisted by the payment operators. Such as a regulated crypto exchange. They are regulated, you have money you paid tax on, but your bank decides whether or not you are allowed that payment and will not give you legal reasons for stopping/reverting payment. May even choose to close your account if you argue with them. With crypto, all you need is funds in your wallet and the recipient's address. Can you see the difference now?
I'm definitely not that familiar with Ethereum, my thesis research was on Bitcoin but I have been fairly tuned out since then.
But wouldn't confirmations take, as you said, five minutes on a good day? I see people saying 5-20 minutes typical for Ethereum to reach 30 confirmations. And sure you can accept fewer but 30 seems a pretty widely accepted convention. That's still slower than wire transfers which are functionally instantaneous (in practice of course it takes a minute or so). And right when I looked now the base TX fee is $19.10, which is a few dollars lower than I thought, but I see that it fluctuates by a few dollars pretty quickly so it would depend on the moment. I don't know the Ethereum situation with regards to EIP-1559 in very much depth so if I misunderstand how fees currently work please correct me.
This seems to put Ethereum basically right on par with what my credit union charges for wire transfers. Now $20 is on the lower end for wire transfers on a consumer account (I think $25 is common), but you can also get lower on commercial accounts. It just seems like they're fairly on par with each other from a fee perspective, and Ethereum is at least a few minutes slower.
> Use a trusted exchange if you are worried about that.
This doesn't protect against your credentials being compromised, and it's not useful advice unless you can explain your criteria for declaring an exchange trustworthy and how that would have excluded all of the exchanges which have lost their customers' money.
> No bank in the world will care if someone steals your wallet.
Yes, this is why most people use regulated banks which have the fraud handling and reversal processes which cryptocurrencies lack. It's not just that you don't have to carry it with you, it's that there are things like verification and reversal processes which mean that individual people are both less likely to lose money in the first place and more likely to get it back. If you've ever bought a house, the process of verifying a large amount of money being transferred is very different from writing a small check whereas all you need is a typo to lose cryptocurrencies without recourse.
This is my favorite story about crypto fraud protection:
The Winklevosses came up with an elaborate system to store and secure their own private keys. They cut up printouts of their private keys into pieces and then distributed them in envelopes to safe deposit boxes around the country, so if one envelope were stolen the thief would not have the entire key.
It's quite crazy to think that these guys not only were basically behind FB (they won the lawsuits, with an 's', proving it) but also saw Bitcoin early on. They bought at less than ten and were billionaires when it hit $10 K.
So these dudes both "saw" FB and cryptocurrencies.
Hate as much as you want on FB and cryptocurrencies, it's still quite a feat to have foreseen both.
Regarding storing parts of the secret here and there: it's basically and "m out of n" scheme AFAICT. There are many variations of this but the overall idea is that you can afford to lose (n - m) parts and yet you'll be able to recover the secret. And if a thief were to steal parts, he'd need m parts to be able to recover the secret.
> Regarding storing parts of the secret here and there: it's basically and "m out of n" scheme AFAICT. There are many variations of this but the overall idea is that you can afford to lose (n - m) parts and yet you'll be able to recover the secret. And if a thief were to steal parts, he'd need m parts to be able to recover the secret.
The difference between a Shamir scheme and a true multi-signature scheme is that the former requires combining the m-of-n pieces to reveal the single private key to sign a transaction, which is a huge vulnerability and single point of failure.
Bitcoin script allows the m-of-n signatures to remain geographically dispersed, each signing the transaction with only their own key, so no single party ever needs to possess the full private key.
This key storage system is a now very common and (ostensibly) very secure model that has been iterated on and is in wide use, especially for hardware wallets like Trezor. The model they use is called the "Shamir Backup," here's more info: https://wiki.trezor.io/Shamir_backup
A cool feature of Shamir Secret Sharing Scheme is that it has information-theoretic security[1], just like one-time pads.
In a exaggerated 100-out-of-1000 scheme, even if you steal 99 out of the 100 required shares, you still have zero information. You are better off trying to brute force the value from scratch than trying to use the 99 shares you have.
It's also very simple to implement, making it my favorite algorithm.
your bank fraud protection doesn't prevent the bank from losing money. banks lose a lot of money to fraud and nobody is prosecuted.
from my perspective, you are comparing a user experience that has nothing to do with the technology.
a bank is a third party service providing custody to bearer instruments.
a future financial institution will be a third party service providing custody or other protections to your crypto bearer instruments.
> If trillion dollar market caps and god-knows-how-many billions of investment couldn't figure out how to protect consumers after 13 years...
there are DeFi insurance protocols, many people get paid back after being scammed, rug pulled, exploited. Look at the source, it is convenient for this to not be mentioned as all chainanalysis does is sell fear to governments to land contracts.
> banks lose a lot of money to fraud and nobody is prosecuted.
That's true some times, but then it works like an insurance policy to me. I like insurance, especially when it's about my life savings.
> a future financial institution will be a third party service providing custody or other protections to your crypto bearer instruments.
As you mentioned, that's a bank. There's no reason to believe that crypto-based banks will be any better than traditional ones, especially if you compare to newer fintechs.
> many people get paid back after being scammed, rug pulled, exploited
I was not aware of that, thank you. But it's still too few compare to the whole.
> There's no reason to believe that crypto-based banks will be any better than traditional ones
That wasn't the supposition. Who cares? Wait I know people that do care, you thought I was one of those? I view blockchains as a platform to launch projects, and crypto as the necessary fuel to use those platforms, I like the censorship resistance but I don't care about the ideologies, I would like to seamlessly move unlimited sums in and out of them and thats that. I care about fulfilling market needs and niches, I don't care about the accuracy of those needs.
Regarding Defi insurance protocols, there is a lot of education necessary and some ease of use improvements necessary.
There is also defi insurance. And wallets like Argent are working on fraud detection layers within L2 account abstraction (as well as social recovery and ditching seed phrases).
Many people think it will be Fintech in the front, DeFi in the back version of crypto that services mass adoption. The big difference is there is global, permissionless infrastructure for anyone to build tools/apps/services on. No more walled financial system, some kid in India can make a new banking app and it can be as useful as hsbc. They can use the same lending protocols, currency conversion, insurance protocols, and then choose what services they want on top. Maybe someone wants their banking app to be hentai death metal themed and all their moeny to be in picutres of dogs(rather than pictures of the queen or a president). Those who want self ownership and to code their own things, or arent liked by the banks (e.g. sex workers, immigrants, travellers) have just as much access to the system. To me it will be kinda like how lots of people are happy with Windows, but a smaller group like the freedom of Linux.
There's plenty of situations where traditional banking system does nothing. A social engineering scam led to a 6-figure USD theft, it was a down payment meant to be wired as part of a real estate transaction. The money was already out of the country; they got nothing back. There was a local news article about it.
Traditional banking is not perfect by any means, but if 6-figure frauds are making the news, it means they are uncommon. Meanwhile, cryptocurrencies regularly have scams and hacks in the hundred-million dollar range.
Agreed, and where I think is one of the bigger failings of blockchain. We don't actually want a system where mistakes, fraud, or theft are irreversible.
Some will say that you can still prosecute the crimes even if you can't initially reverse the transaction, but you can see how well that is working with hackers from adversary nations. Basically no prosecution and risk free ability to move on to the next victim.
"Friction is a feature with money transfer"
My experience is that moving money between countries where there is a high likelihood of collaborative justice against scams and thefts, ends up being pretty simple. It gets harder to transfer money to places where it is easier for thefts and scammers to get away with it.
I think we want it this way. How many people get taken in by the romance scams[1] where they wire their money to a country with 0 chance of recovery. The money transfer system has been specifically making it more difficult to send money to countries where this is commonplace as that is the only effective way to stop the crime. There is no viable criminal process only friction to make it less profitable and more difficult for the scammers.
If someone uses your credit card or other account info to withdraw cash then the bank cannot reverse that, similarly to crypto transactions. The protection is having an insurance fund to reimburse affected clients. Crypto projects can do the same thing but they rarely do it yet.
There are projects like nexusmutual.io where you can get covered against smart contract failure & exchange hacks.
But even if you would be more protected against frauds in crypto, it has a lot to improve to get closer to it's promises because it's still far from it.
That's a really cool project with its democratic claim assessment, and I admire their transparency. But as with everything related to safety in crypto, today it's still based on optimism.
For example, today the 5-member Advisory Board has unilateral power to change the contract as they see fit[1], and only the smart contracts have been audited, not the organization itself[2].
The only information about this all-powerful Advisory Board is on the home page, and I'm forced to take that at face value. What happens if I put my money there, the board runs away with it, and I try to sue them only to find out that these five people don't exist, or are not related to the project? This is far from the basic security level of any traditional financial institution.
Again, I have major respect for this team. The service is useful, and the documentation is honest and comprehensive. But a blockchain plus this insurance does not make a safe consumer space.
"A fool and his money are lucky enough to get together in the first place.”
-Gordon Gekko
I have zero sympathy for the victims. Stealing from cryptocurrency weenies is almost a public service, like confiscating booze and car keys from teenagers.
The vast difference is that Alzheimer's patients aren't willingly putting their money in dangerous places with the sole purpose of increasing their purchasing power without contributing to society in a meaningful way.
Maybe because without the scams and shenanigans all that remains is some imaginary tokens that literally do nothing and serve no purpose other than "hodling" them?
There are definitely ponzi schemes in defi, but I'm not sure celsius is one just because they pay what seem on face to be impossible rates. Gemini, which is regulated and based out of NYC, offers 8% on GUSD, their USD stablecoin. My understanding is returns on this come from a huge demand for crypto lending from institutions participating in the "basis trade", and a limited supply of USD lending available to them for it due to custodianship and regulator issues with cryptocurrencies. https://www.bloomberg.com/news/articles/2021-03-27/crypto-sh...
My understanding is that the bond market is highly efficient and there is no free lunch. An interest bearing security yielding 8% is a junk bond in today's territory because risk free rate is 0%, and stable corp bonds like Apples are like 1%. 8% is like the price of Argentinian bonds, meaning there is a relatively high chance of default to incentivize capital there compared to the safe 0-1%.
Default meaning, the Gemini coin will be worthless when you try to withdraw. You could try to ride 8% junk bonds for 3-24 months too.
Yes definitely it could be because of risk. There is also a risk that the GUSD isn't returned (with Gemini it's not actually defi, there is no smart contract mandating its return, there is counterparty risk). I'm not saying it's 8% risk free when the risk free rate is 0%. But the article indicates that there is an actual inefficiency here due to institutional restrictions on cryptocurrencies and an institutional demand for products that approximate them.
They claim to make 20-40% APY risk free. Just LMAO right now.
There is no such thing as 20-40% APY risk free, if you think you can get such returns risk free you must be a total fool.
I am unsure how they are doing it but I presume they are using a technique similar to the "Arbitrage in Dual Classes" for stocks. Basically you bet that the price of the class A and the class B of a stock will eventually merge to the same or a very similar price. In this case I think they do this with the BTC spot and future price.
This technique worked well for stocks until 2008 when they all got REKT in the Volkswagen Class A stock short squeeze and lost everything. One guy went from billionaire to broke within one day and jumped in front of a train...
I have the sad feeling this is going to happen again.
As a bonus, Celsius also claims to do Rehypothecation, the thing that caused the subprime crisis.
My project's goal is to increase the safety in the DeFi space (actually just a small subspace for now): We're monitoring token pools for "rug pulls" and giving them a "safety" rating: https://rugpullindex.com
The “I have no sympathy for the victims” comments are crass. But there is a legitimate question of how much law enforcement these crimes deserve.
Arizona has a stupid motorists law [1]. If a car “becomes stranded after driving around barricades to enter a flooded stretch of roadway,” the driver “may be charged for the cost of their rescue.” A similar concept for crypto may be necessary. Law enforcement will pursue. But if they catch the crooks, the cost of enforcement is deducted from the proceeds and flows straight to the Treasury.
Find out how much money we can get policing crypto. We can even charge a greater percentage of potential funds recovered to extract an amount that would make it worth our while. At any rate, with that data we could determine if the money is better spent policing tax cheats.
In short if we're going to get paid well, we should help. If not? Well, sorry crypto bros. Sucks to be you.
I mean, why not both? There's an entertaining subgenre of police blotter reports where people report their illegal drugs stolen. If people report crypto assets stolen (which they very rarely do), maybe have a look at how they acquired them and whether it was reported to the revenue first.
The flipside of that is that the effective capital markets we have depend on a level of trust which could easily be eroded. There were weeks this year where I saw advertisements all over London for DeFi products and cryptocurrency trading portals. I don't think the majority of people putting money in there had any idea whatsoever what they were doing.
That's a bit circular though. I mean, to be clear I don't agree with the upthread point that we should deemphasize crypto crimes. But that said... the trust in the DeFi economy is being eroded right now, and for some very rational reasons.
It's certainly not the government's job to jump in and prop up financial systems in which it's not involved. Its interest is in protecting its own citizens from criminality, not in the level of "trust" in "DeFi".
> Just like with any kind of criminal, stopping deceptive crypto scammers isn’t ‘coddling’ people at the expense of everyone else.
It is if you're trying to stop these scams by putting greater constraints on, say, the fiat on- and off-ramps.
I mean, how exactly are you going to stop the average investor in doing something dumb like dumping their money into a shady project, without placing additional hurdles on everyone else? The whole point is that you're allowed to move, manage, and spend your assets as you see fit, without any government's ability to freeze your assets or block you from accessing financial services via sanctions -- for better or for worse, of course. And yes, the freedom to manage your assets as you see fit includes the freedom to make stupid financial decisions -- as you see fit.
> The whole point is that you're allowed to move, manage, and spend your assets as you see fit, without any government's ability to freeze your assets or block you from accessing financial services via sanctions
That’s a selling point advanced by crypto advocates.
Frankly, it’s ok to make that point. What is not ok is pretending that crypto isn’t also a high risk environment full of scams.
I’m not trying to police anything. I can’t stop crypto advocates claiming it’s a good place for regular people to invest.
> What is not ok is pretending that crypto isn’t also a high risk environment full of scams.
I don't pretend that at all. Like I've said elsewhere in this thread, "caveat emptor." I am sorry if others have told you that is not the case about crypto. Unfortunately, I cannot do anything about them.
> I’m not trying to police anything. I can’t stop crypto advocates claiming it’s a good place for regular people to invest.
Then we are in full agreement. As I said elsewhere, the average Joe who cannot remember their own passwords should not be using crypto, IMO. With freedom comes the freedom to shoot yourself in the foot, and unless you understand basic digital safety procedures, you are best off not shooting yourself in the foot.
It is, and I've had a nagging suspicion for a while now that this is the flaw at the heart of cryptocurrency and related phenomena. It's all built on the premise that the answer to "we can't trust existing institutions" is to try and design systems that don't require us to have trust in any actor, but as Sharlin noted, it's difficult to impossible to do anything transactional that doesn't require some level of trust. Perhaps "trust no one" is not actually the right solution to the problem.
It's the same as open source software, most people don't personally look at the source code of the Linux Kernel, but they trust it more than Windows because they know many thousands of others have looked at it and haven't found issues.
Open systems lead to less trust required, because anyone can verify and report issues. Open finance leads to less trust required because anyone can verify and report issues with the smart contracts.
Many are upgradeable, though it's the common libraries that people use that matter. The Ethereum ones have been battle hardened over years of exploits so you can use them just like you can build on common Unix primitives to avoid mistakes in new projects.
The real problem is that if you don't trust the existing system, the normal solution is to patronize a different one. Go trust a bank in Japan or Switzerland or India or Brazil, which has a decent enough reputation but does things differently.
But the existing system latches onto any point of centralization in any kind of alternative and uses it to impose the same problematic constraints of the existing system that the alternative was intended to redress. Hence the desire for decentralization. The lack of those pressure points.
It would work well enough if we would just have multiple banking systems and let them compete with each other without international pressure to conform to a uniform set of defects, but that isn't what we have. So how do we fix that, if not with this?
No, it is not trustless, it simply shifts trust from central authorities to more nebulous entities such as anonymous developers, shady mining cartels, unregulated exchanges, and even yourself to not lose your private keys. Which you consider to be better is essentially a political decision.
The obvious solution is to have both and then make sure that people understand what they're getting into.
Traditional banks should exist and be regulated and insured etc. People with a low risk tolerance should be encouraged to use them.
People with a higher risk tolerance or who are trying to do something innovative or disruptive should have a system that works for them too. People with a low risk tolerance are not required to use it. People with a high risk tolerance will be exposed to a high risk, as requested.
That's the core semantic confusion at the heart of this issue. Cryptocurrency protocols eliminated the need for trust for cryptocurrency transactions. So you can exchange BTC or ETH all day and night and always know who you're paying and no one can get in the middle and mess that up.
But it does nothing for transactions outside of that world. The core idea behind the "DeFi economy" is making things happen in the real world (by financing business ideas, buying 230 year old documents, etc...). And that part requires that the crypto resources be given to some kind of real actor in the real world who's going to do something real with them.
And those actors are people, and they cheat. Hence the new term of art "rugging". You can cheat people in the crypto world, in some sense, more easily than you can regular consumers precisely because they got fooled into thinking they didn't need to trust you.
Technical hacks against the protocol and implementations are fair game, and is the implicit incentive that balances the market.
Social engineering and financial hacks are not fair game, and are "illicit" in the sense that crypto is obviously an international martial zone.
Exhaustively brute forcing a keyspace is valid, making your username an XSS to steal funds from an insecure page/downstream app is not valid.
Finding and leveraging an exploit in a contract is valid, both a paper/legal contract and a literal codified Eutherem contract. Flashing incorrect token prices on CoinMarketCap.com to take advantage of (unauthorized? grey) downstream screenscrapers and rugpulling affected tokens is NOT valid, but, admittedly murkier.
Fair game and valid according to whom? You cannot legally rob a bank just because they left it unlocked and unmanned. It might be possible to take crypto due to a bug in a protocol, and arguably justifiable, but that doesn’t mean it would hold up in court if you were identified as the one using the exploit.
Socially acceptable. Because I am not going to acknowledge or respect a Turkish summons. Although I would expect a Turkish hit squad.
>You cannot legally rob a bank just because they left it unlocked and unmanned.
Exactly - because it isn't a bank, it is a bunch of cash on the street, if it was unlocked and unmanned.
And even if there was a clear Sticky Note with foreboding text, you would be in the clear to pocket a stack of cash sitting on the sidewalk, left unattended, guarded only with a sticky note.
The steelman and strawman are nearly identical - a bugged contract or implementation isn't a bank, it is a bunch of cash on the street. It stopped being a bank once a bug was found.
No, because keys for a car and keys for a wallet are wholly different, and even then, picking a lock (bruteforcing a keyspace) isn't comparable, because the value, intent, and purpose of a car is not in its properties of being able to be transferred, transmitted, and it's future value increasing (although that last one is true incidentally), but it is primarily used to get from A to B.
If you found a gift card with the PIN in the street, it would entitle you to a moral inhibition. If you went through a stack of discarded gift cards and found ones with change, you would be less morally wrong, but just as legally right.
Finding a debit card in the street with the PIN is akin to finding someone's wallet.dat file on their github. That is stealing, so no comparison.
Thanks for these analogies. People unfortunately want the new technologies to be an exact replacement of the status quo. There’s no reason for it to be the case and the way these technologies work may make it infeasible to enforce the rules of the status quo.
> And even if there was a clear Sticky Note with foreboding text, you would be in the clear to pocket a stack of cash sitting on the sidewalk, left unattended, guarded only with a sticky note.
That's not true, and not true globally. Unattended valuables being taken is still theft. Though prosecution is rare, it still happens [0].
It's not a matter of whether it's theft. Of course it is.
But if you leave your valuables in the street unattended and then come back shocked to discover that they aren't where you left them, this is not a problem that requires new legislation to solve. The solution to preventing this from happening to you in the future is quite obvious and doesn't involve the government.
And if the government manages to catch the thieves, great. But if they don't, c'est la vie.
> You cannot legally rob a bank just because they left it unlocked and unmanned
Nobody suggested making crypto crimes legal. Just metering the degree to which law enforcement, a public good, is put to use pursuing it. Why should a law-abiding saver bail out what in many cases looks like a gambler’s foray?
> Why should a law-abiding saver bail out what in many cases looks like a gambler’s foray?
Because having an idea about how these frauds are committed are helpful for society as a whole. Law enforcement investigating such crimes is the first step towards meaningful laws and regulations.
Acting as though these crimes never happened because they're not enshrined somewhere in the criminal code is cutting off one's nose to spite the face. The negative externalities will still be there, and they will land squarely at society's doorstep. We will all have to foot the bill one way or another.
Everyone's a rugged individualist until they get rugpulled.
I am not sure what you mean by “bail out”. When something gets stolen from you, the government doesn’t repay you for the actual amount. They do pay to litigate/make litigation possible. That is part of the societal contract - if you own something and someone takes it from you, the court system exists so you have legal means of restitution. I don’t really care about whether that’s good or not to apply to crypto, I am merely pointing out that it does.
It's a bit unfair to make that comparison. Most technical hacks are always present until somebody abuses it, to make a fair comparison the bank would have to _always_ be left unlocked and unmanned
The guarantee that a bank gives is not the same guarantee that a smart contract gives you. the bank guarantees the safety of your money, the smart contract guarantees that it will as stated in the code.
It's on the the contract dev to write the correct thing and on the contract user to determine if the does what is "says on the thin"
You obviously don't understand basic contract law. US Civil courts routinely apply the principle of equity when interpreting written contracts. Loopholes and errors are disregarded when they violate the clear intent of the agreement.
And they routinely admit that some cases are not clear cut. But crypto has no grey zones, by design - you either have the keys, or you don't. And that is the explicit agreement code-contract signers agree to when they go out of their way to DeFi their agreements.
Obviously legal precedents and statutes are not fitted for this purpose yet, because they are reactive, not proactive.
Nothing annoys me more than arrogant ignorance. It's like, pick one! You speak as if these are handled as federal matters, and they are not. Contract disputes are handed as local matters, usually in a local district court.
Furthermore, when you talk about the court you're talking about a Judge. The Judge gets final say and they can take their sweet time, regard or disregard anything they want. In local matters, Judge's act without restraint. Appellate court, the state bar, the judicial qualification board, federal court, all gets involved so rarely they can be ignored. Additionally, these Judges are no stars of the legal profession: cohorts of lawyers will often rig elections and appointments to favor a well-connected but bad lawyer, because being a judge is actually really easy.
So, yeah, it mostly depends on who the judge likes better, and whether society is better or worse if this dispute is decided this way or the other way. I can't stress enough the arbitrariness, and supreme unaccountably, of a local judge's decisions.
> I can't stress enough the arbitrariness, and supreme, unaccountably, of a local judge's decisions.
Exactly. Code-contract signers hate this, and go out of their way to avoid the possibility of this interference.
Judges should tell crypto cases to get rightfully fucked.
If I appear and sue a drug dealer for giving me fake 100's, I'd get laughed at.
Considering crypto is just an massive abstraction layer to hide the online drug trade, the courts should similarly laugh at these _technical_ exploits, in the context of Euth-shit code. Because it's sole explicit purpose of existence is to conduct business without arbitration.
Fine, make crypto outside the legal system. Gains can't be taxed and failure to apply AML/KYC can't be prosecuted, but you get no protection from the courts for theft. I'd take that bargain.
> If I appear and sue a drug dealer for giving me fake 100's, I'd get laughed at.
Is that actually true? On the criminal side, I served on a grand jury, and a lot of the cases we saw were criminal-on-criminal crime. I guess the idea driving the crime was that criminals make easier targets as they're less likely to go to the police. But some did.
It is how it works. The rules don't matter; the attorneys know what words to say to give a judge reasons to either admit or reject application of any rule. The coin that remains in a case is likeability and making the judge's life easier.
The net result is a system where attorneys are falling over themselves to prove who is more obsequious to all the judges. If you become a problem in one case, you will suffer in your other cases, too, so individuals with legit complaints against the court can and will be ignored.
The net result is a court that ignores all but the most mechanical rules (and loves to stall on those when it can, because it approximates the appearance of "work"), and has no mechanism for correction. I'm sorry, but the rules don't really matter, to anyone.
That comment is just deranged. I assume you had a bad experience with legal system at some point but you clearly don't understand how it actually operates, especially at the appeals levels.
If that were true, it would not be possible to run a sustainable business in any industry. Legal systems need to generate consistent results with respect to contract law in order for commerce to be successful and efficient.
Cite? No, the way it works is that you pay lawyers who know enough to play it out in their heads and determine who has to pay whom to make it go away. If one side is stubborn and ignorant, then they pull the trigger and the years-long, extremely expensive lottery play has begun.
Your assumptions about the law, about judges, and about rationality, rhetoric, and the justice system in general are about to be destroyed. The lawyers know the high variance of court and generally want to avoid court like the plague.
(The justice system is badly broken, obviously. The core issue is that it takes far too long to judge a case, and a big reason for that is a) the rules are too complicated and b) not adopting better tech. We should have trials that start a week after filing, with online juries, online judges, and real-time access to data. The attorneys can finally earn their ridiculous wages by learning how to fly through information and present it in a compelling way.)
The median lawyer salary is $122K. Whether that's ridiculous is a matter of opinion, but it's only a little higher than software developers. And the average lawyer has more education.
Some civil court hearings are already conducted online.
You'll have to back this up with evidence. You can file complaints about local judges to judiciary committees, administrative judges, you can appeal their decisions, and if you actually go to trial you get a jury unless you specifically waive it (along with all other parties).
I don't see how they're unaccountable, or how contract disputes mostly depend on a judges disposition.
They are only victims of their own greed and ignorance. It's like ending up in the hospital because you chose not to get vaccinated against COVID: People have been trying to warn you for years, but you wouldn't listen, and now you are paying the price.
100% of Crypto "investors" are speculators looking for a quick buck by investing in a system that is pumping needlessly huge amount of carbon into the atmosphere. They're not well-meaning victims who stumbled into the bad part of town, they are greedy thoughtless people in search of free money.
They may be in search of outsized returns, but I think people can absolutely be victims of the ‘have fun staying poor’ meme. The implication is that if you don’t buy into crypto your assets will be decimated by inflation. I think it’s reasonable to consider that it’s not ‘greed’ but rather fear of being left behind that is driving many victims.
It's not common at all. I lost $10k in crypto to downloaded malware. I filed a police report and tell the story all the time. Very few people are psychopathic enough to blame the victim of a robbery.
>Stop trying to shame people for expressing a common, reasonable and fair opinion that you don't like.
I realize the dangers of posting something remotely pro-crypto on HN, but I have to say this is a pretty rich comment. Shame is all that is doled out to the many people who have reasonable and fair opinions about cryptocurrency that you don't like (such as thinking some cryptocurrencies are reasonable or worth speculating over).
I agree. They are not unreasonable. They are crass. If a child is told not to touch a stove and then burns herself, I may consider them stupid, but I can still have sympathy for the pain they are experiencing.
Yes let's keep making weird incentives for law enforcement like asset forfeiture. I want police to be like an American ambulance and run my credit card before saving my life.
> let's keep making weird incentives for law enforcement like asset forfeiture
I hate civil forfeiture. That’s why I specifically suggested the proceeds flow to the Treasury. Not the law enforcer’s budget.
There is also a world of difference between taking something you legally possess, and taking a cut of things returned to you at the expense of the public purse.
These sorts of rug-pulls blur the line between legal and illegal though. Take the "Save the Kids" token [1]. In this case, they hyped up this token, their audience bought into it thus jacking up the liquidity, and right around the top all the folks that were hyping the token sell off and everyone is left with a token that's basically worthless.
When we talk about law enforcement stepping in, I struggle to see what they could possibly help with in scenarios like this. TBH the FTC or SEC needs to step in and investigate these instances.
It’s easy not to have sympathy because these folks are the ones railing against the banks and the government and the establishment and police - confident they don’t need them because they’re all in on a system the vast majority doesn’t understand the first thing about. But they’ll demean and criticize anyone who suggests their magic free money machine might not be all it’s cracked up to be. They’ve been warned so many times. Like the anti-vaxxers turning to ivermectin. It’s honestly just an episode of r/WinStupidPrizes.
Even now they’re rationalizing - US banks offer 0% interest and took $12B in overdraft! See how much worse that is? Well except the $12B is out of $18T in assets so DeFi hacks cost 1400X as much per user.
In fact 10% of all TVL in DeFi was stolen this year. That means if you’re not making a 7% return for inflation and a 10% return for risk loss, you’re losing money in real risk adjusted dollar terms invested in DeFi. 17% APR in DeFi is equal to 0% in real dollar terms.
The exact value of inflation this year is controversial and depends a lot on how you measure it, but you can replace it with 6 or 8 or whatever you think the correct value is without altering their point.
I do believe the medium-term inflation goal of 2% will be reached, and that this is simply a function of supply chain disruptions. I was using the most recent CPI data. You can also get a 7% yield on treasury Series I bonds. [1]
Is that really a fact, that 10% of the value locked into DeFi was stolen this year? I would think that most of the TVL would accrue to the more blue chip protocols (Aave, Uniswap, Compound, etc.) and to my knowledge these haven't been affected much by these big hacks.
DeFi Pulse says there's just under $100B in TVL. [1] About $10B was lost and stolen this past year depending on where you look - $7.7B according to this article, but I saw $10B circulating too.
I don't think DefiPulse has everything. Here's a few more off the top of my head, though I'm sure there is more:
- $5.5 billion (TVL on Eth L2s via L2Beat)
- $4 billion (ETH 2.0 staking contract)
- $17 billion (Polkadot staking)
- $16.5 billion (Cardano staking)
- $36 billion (Solana staking)
The article's figures include the centralized Turkish exchange which made off with ~2.6B , so I don't think it's fair to consider it the same kind of thing.
> Rug pulls have emerged as the go-to scam of the DeFi ecosystem, accounting for 37% of all cryptocurrency scam revenue in 2021
So 37% of $7.7 billion is $2.849 billion.
> All in all, rug pulls took in more than $2.8 billion worth of cryptocurrency from victims in 2021.
> It’s important to remember that not all rug pulls start as DeFi projects. In fact, the biggest rug pull of the year centered on Thodex... In all, users lost over $2 billion worth of cryptocurrency, which represents nearly 90% of all value stolen in rug pulls. However, all the other rug pulls in 2021 began as DeFi projects.
The graph shows $2.6 billion was lost with Thodex. So that leaves $0.249 billion that was lost in projects that were rug pulls that began as DeFi projects.
"have fun staying poor," he said, clicking on the coin roulette, eyes never leaving his plugged in android tablet, physically hot to the touch from the max CPU load.
"i am going to retire in 5 years. have you heard of prove-your-steaks? its gonna change crypto. you can get 20% back, just lock up your starving kids Earned Income Tax Credit for a year, and you'll make $500!"
"have you heard of this new shitcoin? probably not - i know you retired from crypto! haha...anyway, it exposes you to upside leveraged of @PISSCOIN and is tethered to the stable-genius coin. its basically free Unisex-swapped tokens."
"hey. some guy on discord was helping me install a chrome plugin to manage my coins and now my $400 in life savings is gone...are you still good with computers?"
You cannot get margin called on a cash account, because you cannot make positions that are not 100% collateral covered, unless you have 25k. Then you can do that, and trade more than 3 times a week (and don't have to wait til settlement)
Pension funds don't deserve to go bust, but shouldn't be bailed out if they fail to diversify their portfolio.
There are a lot more safe-gaurds in investing, because all these games have been played before.
But those require consent too - with crypto, someone can, and will, irrevocably steal your funds without possible recourse.
.. and indeed the UK and other countries have banned the OTC sale of particularly bad ones, such as binary options. There is some effort to prevent people selling overly fraudulent or risky products to the general public, even if it's leaky.
If you loose you crypto in a dex hack you have my sympathy, if you got rugged with a "double your crypto" kind of scheme or some mooncoin, there is no sympathy for you. The same applies for fiat. This does not make you a victim, it make you a greedy target.
a large majority of those people fall into the greedy category not the victim
Maybe I'm missing something, but there's something that I don't get about DeFi.
My understanding of the idea is this:
1) Using distributed code, the operation of which is assured by code on a blockchain based system like Ethereum, lending and investment can happen without the intermediation of banks and capital markets gate keepers. The savings from cutting these layers out can be shared between the supply and demand side of capital.
2) On a temporary basis only, some element of the rewards of contributing external capital, computational power, or other resources to a particular pool of capital are "extra" on top of the core capital allocation function of the pool. These can be structured in various ways but essentially the idea is to bootstrap money into the pools through a reward system that declines over time.
3) If the core proposition, that there is gain to be had from the disintermediation, is true, then at some point pools reach a sort of "ignition" point where the pool exists for that purpose only and the temporary bonuses are no longer required. This would mean that despite structural similarities, these are not Ponzi schemes since there is an eventual state reached were a real function is being performed. Some people will stop contributing to a pool as the rewards taper, but that won't matter because most of the money is now in there to be lent out for profit.
4) If that core proposition is not true, then they are Ponzi schemes because all the growth is coming from the rewards.
My problem with (1) is that these are already relatively low margin activities so how can there be enough disintermediation to go at once you account for the default and scam risk on the side of the borrower? It isn't the case that capital is expensive right now, tech investors are giving it away like its going out of fashion, headline borrowing rates are incredibly low, PE is going crazy buying everything. It's also striking to me that the promoters of these DeFi schemes spend so much time on bringing in new lenders but very little seems to be done on the borrower side. Surely if you're building a sustainable capital allocation business, you need a pool of borrowers? Ideally one in a business where they can provide substantial collateral for their loan, support high returns, but somehow can't access other forms of finance (but not because their business is illegal). That would seem to be a rare commodity so I'm surprised not to see pools fighting over access to these borrowers.
What is missing in that explanation for me is the increase in value from perceived artificial scarcity.
Like paint on paper costs almost nothing until it has the right artificially scarce provenance and becomes a work of art, some cryptocurrencies can become valuable to hold and trade in and of themselves thanks to perceived scarcity.
So it seems. That does mean that there is a non-scam explanation from where genuine returns come from but doesn't solve the bigger problem since the consequences of a major disruption to the traded assets could cause massive losses. Is this just a pennies in front of steamrollers type trade like other basis trades?
DeFi is not well-suited to do finance, i.e. lending and borrowing, because enforcing financial contracts typically requires the ability to exert coercive power, which DeFi can't do. As a result, DeFi can only implement a small subset of not super-useful financial operations. It cannot replace conventional finance by any stretch of the imagination.
Yeah. It would have to be a business where the assets of the operating business were themselves somehow subject to the blockchain logic but I can't see how that would work.
One example of a "rug pull" is that the team provided liquidity to the AMM liquidity pool, and then removed it, leaving people with no where to trade the token. Its honestly hard for me to call that a scam, although I understand the community expectation being undermined.
First: the SEC exacerbates this reality. Tokens that don't want to be considered a security have to consider NOT providing an expectation of liquidity. The team has to avoid expectations of providing secondary market liquidity just to stay out of the crosshairs of the SEC. And even in SEC registered land, If you look at the "risk factors" section of public equities, they frequently say "there may be no market for these securities, a secondary market may never form, there is no guarantee that it will always be there", which is true in all markets!
Second: with the advent of AMMs, ANYONE can provide assets into the liquidity pool. (even the acronym of AMM don't tell you much about what this is, its just a different model of exchange that is very popular). So even if token traders had been relying on the team under an unspoken symbiosis of the team providing liquidity, the token traders now can do it themselves. This is also very common. The token traders typically follow incentives to actually do it, but they CAN without those incentives.
Third: Token traders are the community and can take over any project to try to make their investment more profitable, it just requires more risk. It happens, but the times it doesn't happen the token traders just stop engaging with the project as well.
How can this be distinguished from other "rug pulls"? I don't think it is possible.
> One example of a "rug pull" is that the team provided liquidity to the AMM liquidity pool, and then removed it, leaving people with no where to trade the token. Its honestly hard for me to call that a scam
If the team went through all of these steps with the intention of pumping the value of the coin, hyping others into buying it, and then extracting as much money from them as possible with no intentions of helping the coin succeed long-term, that seems like a scam to me.
The victim-blaming mentality runs deep in the cryptocurrency world. It's fascinating how many people in the cryptocurrency space are reluctant to call a spade a spade only because the underlying blockchain or algorithmic rules weren't violated.
And you think thats what I just did here? Describing why the categorization is wrong to you is a symptom of victim blaming?
My point stands that the community can do what the team did but fail to take further risk or organize. They disperse just like the issuer did, when in fact they do all have agency and can fill the vacuum. unless the token was backdoored, then we can call it a scam.
If the original team made promises with no intention of fulfilling them, and didn't, it's a scam. If on the other hand the community could do the same thing .. why did they need to pay the organizers (and their premine) in the first place?
team allocations aren't always the case. if chainanalysis is looking at the rug pulls that I'm talking about, then much of the time there was no upfront capital to the team with a separate premined allocation. many issuers are currently putting all the tokens created directly into a liquidity pool paired against capital they already had, bots and individuals buy into the liquidity pool and receive the new token, pushing up the price in the process, and then the issuer unbundles the liquidity pool, leaving no pool, (while acquiring the liquid capital added to the pool by purchases. AMMs function by then having less of the issuer's tokens and more of the tokens that were used to purchase the issuer's token)
these are colloquially called rug pulls, because the liquidity pool was the rug. these happen so fast these days. These things can play out completely within 20 minutes, as bots and individuals are scanning the blockchain mempool for erc20 token creation transactions and liquidity pool creation transactions, just to get into a potential big project before anyone else.
here, the traders are at no disadvantage to the issuer, from a community perspective, to continue the project and attempt making their investment valuable, specifically by adding to a liquidity pool themselves.
again, my main point is that things that are very common are not being distinguished from whatever you or others want to argue about. its an article about this year, not 2017, not 2018, or some other year dominated by an antiquated style of ICOs.
there is something to debate, but the vocabulary itself doesn't allow it, perpetuated by an organization that gets no benefit from distinguishing as all they want is technology contracts from governments.
(OK, who went and made Hacker News text uncopyable?)
I think "rug pulls" is not defined well.
It's a standard type of investment scam, "take the money and run". The SEC even has a video for the clueless.[1] And a web site on ICOs.[2]
This scam long predates cryptocurrency, or the Internet.
Newspapers made mass-marketing a scam possible. That started about two centuries ago. Most scam types, like this one, are old. They just keep coming around in shiny new wrapping paper. This isn't innovation.
The "innovation" here would be the ease in which communities can take over projects if they coordinate.
But upon a second reading, I don't think you get my point that there are categories of things called "rug pulls" and the chainanalysis article does not distinguish well. I also think distinguishing is not possible to reach consensus, right now, but attempts should be made.
Dogebonk is a good example of a community taking over a token, renouncing contract, locking liq etc. fascinating to see a true community meme engine revving up.
Great, yeah, a lot of people aren't inspired enough to consider doing that, and others don't know it happens. The more examples the better. People really aren't as helpless in the crypto space as they act, or prompt onlookers to think.
It's hard to understand what to do about this without making some sort of congressional committee to decide which cryptos are good ones and which aren't (and that will obviously never happen and shouldn't)
People have a right to spend their money on things. If the choose to spend their money on nonsense that has no contractual obligation to return their funds to them that seems like a legal transaction when the funds don't get returned.
I do feel for some of the people who thought they could have a better life by 10xing or 100xing their networth on scam coins but the reality is they didn't do their research and willingly walked into this.
To a certain extent there's value in stopping individuals from giving away their entire networth though, whether they lose it through insecure crypto or to fraudsters calling about "an amazing investment opportunity". People whose lives are wiped out don't simply cease to exist, they very well can become a burden on other members of society.
A lot of decisions we make in the modern day have guardrails set up to protect the individual to a varying extent (which is often a topic of politics), so it may be we eventually get guardrails in the crypto space as well.
lol sure if that helps you sleep at night about the decisions you've made in your life thus far.
it's not hyperbolic, there is a lot of liquidity in this multi trillion dollar market.
although if you're asking this question, the next point might dilute my prior point to you, but a reality is that many people aren't seeking fiat. They don't want dollars. They want more crypto. For physical goods and services there are also enough closed loops to acquire whatever is desired without touching dollars. For digital goods and services they can already be acquired for crypto.
But outside of that, charities accept crypto donations. Private equity firms accept crypto in-kind investments as the third party fund administrators have also updated their technology. Politicians accept crypto.
No different than any of these entities accepting stocks or bonds, and considering to liquidate some eventually. Except the crypto is more easily exchanged for goods, services, donations, investment.
it shouldn't sound absurd, but if it does, just remember that they can also get as much cash as they want whenever they want.
because it requires introspection, its intentionally a dig at people that rationalize why someone's windfall is "not actually a windfall"
like the people who say
"$X is not that much these days" (it is and they want it)
"That billionaire doesn't really have that much money" (billionaire then sells 10% of their holdings in 3 days for billions of USD)
"What about after taxes?" (pay for an accountant, you'll see its better than you think)
and the reality is that liquidity changes faster than the culture. especially across all markets over the last 2 years. so its time to force that introspection.
It moves the needle. the predictable alternative is that I get into an argument about liquidity with someone that doesn't know this market. the predictable thing is to pull up an article from 5 years ago about the thinness of the crypto market, because google tells you what you want to see. the predictable thing is to not know about large OTC trades done specifically to show the depth of the market, or not know about the dark pools at all. the predictable thing is to then demand a source, which is not possible due to the very nature of dark pools, and then act like that validates their incorrect reality.
my dig is about introspection, how many other times have they made an excuse to miss all the alpha? are they actually comfortable with the decisions they've made, maybe they are. it just gives them an out to believe whatever they want. sentiment in the crypto space has generally gone this direction right now. everyone is aware of all the arguments against being in the space from traditional finance minded folks, and simply check their stocks and their crypto on two separate screens daily anyway.
365 comments
[ 128 ms ] story [ 6753 ms ] threadThe net effect of equity investment is to increase the amount of capital targeted towards the production of capital goods; i.e. deferring consumption makes humanity richer in the long term.
I think the biggest predictor for being conned is not low IQ but high greed.
Happy times /s
What can possibly go wrong?
Circle/Coinbase use the exact same mechanism.
These kinds of stablecoins are destroyed only upon explicit redemption. Not when sold to someone else on the open market.
It’s not that different from a brokerage account’s deposits. People don’t actually withdraw that much because they don’t need that much cash. They keep their cash in those ecosystems waiting for other trading opportunities and add more from other sources into the exchange.
I know it’s absurd to assume tether functions as described, 99% of the time for 99% of the value. But the market is showing the same thing with stablecoins that are better governed.
For the decentralized/permissionless/uncensorable minded people, The best bet is for other kinds of stablecoins to grow faster
Coinbase, an Y combinator unicorn, is behind Centre/Circle and the USDC stable coin. And there are now $41.5 bn USDC circulating.
At one point it was billion of USDT circulating and USDC didn't exist yet.
Then USDC began to took off and there were, out of memory, $5 bn USDC and $23 bn USDT.
But, overall, the trajectory is clear: USDC is growing faster than USDT.
It's $41.5 bn vs $76 bn today.
Maybe in a few months USDC shall catch up, then maybe even surpass USDT.
Do we all believe Coinbase and its Centre/USDC stable coin is a scam? It's an american company, with real people behind it. It's not some scammy thing in the Bahamas.
Now here's an intriguing question: if we believe Coinbase isn't a scam and that these $41.5 bn USDC are really mostly or all backed, does tether's $76 bn really look that unthinkable?
Oh yes I forgot Americans can't be scammers.
What you’re missing is that whenever there’s panic selling there’s always someone on the other side finding a great discount.
All scammers are real companies with real people behind them. Until they aren't. Location of a company doesn't matter.
"Ponzi Scheme" literally comes from a man who was scamming his victims in the US and Canada.
Enron would like a word!
That's reported as a drop from the peak. But it doesn't necessarily reflect the real losses, in terms of initial investment. It's a number larger than the total amount of "real" M0 money in 2000, for example! Feels more like "an unrealized gain that never materialized" than "loss".
I remember that time, it was just after I graduated. There was a lot of business craziness on a scale that defi is yet to reach, although it's already hit some of my peak markers like "rename a stadium".
Let them keep saying crypto is scam, people who believe in it will win in the long run anyway.
I'm not sure if the current level of crypto-enabled pump and dump is the optimal level though ;)
You mean "speculate" here, not invest.
People definitely want (and must be able) to invest money that they cannot afford to lose, at least not all in a split second.
edit: Initially I vastly underestimated how much GameStop stock went up
- is there exponential growth still to go, so that we might expect $70bn lost in 2022?
- or is there a finite amount of victims to be scammed, after they've lost all their money the rate of scam will decline?
- or is it more likely that there will be some kind of intervention?
(Barring some massive SEC/DoJ crackdown, or something. And even then, that'd only put a dent in it and would just scare away some US scammers. Most of the big ones are outside the US's reach.)
We’re also looking at theft-of-stake instead of theft-of-work to reduce energy usage, allowing scammers to be much more efficient and green.
To the moon!
Isn't this true of the entire cryptocurrency cult though?
As not being scammed goes, I just avoided everything that was super new (like a project 3 days old that already has $3b in TVL), avoided things that sounded super scammy (Most recent one coming to mind being SQUID token. I mean, come on), avoided things that had no real reason to be, avoided things that I didn't really understand despite research.
My most successful investments are those made in crypto winters, during "see? crypto's over".
In the real world, "crypto holdings" are IOUs with a dynamic value of how much is being owed. This absolutely can create (and especially transfer) real world wealth.
I'm happy with my bank's fraud protection. How can crypto users protect themselves without recreating traditional banking?
Bitcoin was released ~13 years ago, and wallet/transaction security has been one of the most important requirements since then (along with scalability, but let's not go there). If trillion dollar market caps and god-knows-how-many billions of investment couldn't figure out how to protect consumers after 13 years...
Mind you, it's worth noting that MPS had four centuries of independence before listing itself on the stockmarket and losing its independence comparatively shortly afterwards in the 2008 crisis.
And when even the professionals fail to see scams, how is the general public supposed to do so?
And sadly a lot of charities.
https://en.wikipedia.org/wiki/List_of_investors_in_Bernard_L...
People routinely fell victim to fraud. Why else would the government have introduced bans for ponzi schemes or regulatory requirements to go public with stocks, if not to reduce the amount of fraud?
Just because an entity uses "crypto" instead of "US dollars" it should not be absolved from the requirements of established players, they were instantiated for damn good reasons.
- The scams are online, so I cannot knock on the scammer's door with an angry mob and ask for our money back.
- Pseudonymous identities means scammers have strong protections against being sued or prosecuted.
- Digital wallets, as opposed to cash in bank vaults, means that you can lose all your savings in one mistake.
- Complete lack of trusted third parties means there's no one to appeal to, or to raise alarms in suspicious cases.
The old protections were already pretty bad (scams and thievery very much did exist), and cryptocurrencies are lacking even those basic protections.
>- Pseudonymous identities means scammers have strong protections against being sued or prosecuted.
>- Complete lack of trusted third parties means there's no one to appeal to, or to raise alarms in suspicious cases.
I think that all these things are not fundamental aspects of crypto, but rather how the user chooses to use crypto. If I wanted to I could use crypto only for buying eggs from the local market, or paying a plumber to do some work for me, etc. Scams have existed for decades that involve essentially mailing cash to people that fit the criteria you listed - it's not an issue with cash, but an issue with how people are transacting (with remote unidentified people).
>- Digital wallets, as opposed to cash in bank vaults, means that you can lose all your savings in one mistake.
This is no longer strictly true, at least for loss of wallet keys. There are all sorts of solutions out there (Argent, for example) that allow you to have 'fallback' key methods for if your main key is lost. Yes, if you mistakenly send all your money to the wrong address in crypto you lose it, but that was true of cash as well. Once you spend it it's gone.
So...by staying out of cryptocurrencies entirely, then?
Sounds good to me.
I believe in the USA there was already some legislation passed some time ago that would allow banks to be custodians of crypto-currencies?
---
[0]: https://bitcoinethereumnews.com/crypto/two-german-banks-comm...
It's similar to stocks and bonds - you could own them yourself, but for not-huge private investment it's often simpler to have a financial institution hold them on your behalf.
It's also worth examining the current system. How happy are you with your bank's 0.01% interest rate? Which is actually negative when you factor in inflation that's eroding the value of our dollars faster than ever, and increasingly transferring wealth to the top 1%? How happy are you about bank CEO compensation and bailouts? No one in crypto is asking for a bailout, even when it crashes 80%. And what about the fact that bank's charge poor people the most or flat out deny service? Or the fact that it's all closed source and behind closed doors.
The "rug pulls" you see are from contracts written maliciously. DeFi is a ponzi scheme written into a Smart Contract, but some of them have an extra function that allows the creator to instantly steal all the money out of it.
For a very narrow definition. You still need a way to get Bob's wallet address, and to secure your own wallet. Just look around and you'll see plenty of experts failing to do that correctly.
> The "rug pulls" you see are from contracts written maliciously.
And the contracts, being from DeFi land, are immune from chargebacks or legal prosecution. Regular old fraud, made exponentially more damaging because of cryptocurrencies.
Fair enough. A transaction is secure, but the wallets might not be. If you rely on a 3rd party to host your wallet (ie, Coinbase), then you risk your money being stolen when they get hacked. If you host it yourself, then you risk losing the keys unless you make a backup, and the backup could get lost, or if you store it in cloud storage, it could get stolen there.
Credit cards are harder to secure than wallets IMO, but at least with CCs, you have recourse in the case of fraud.
The whole at least somewhat civilized world has moved to a more advanced versions of money, but cryptocoins are a step backwards and it is entirely intentional.
I'd never mail cash for that purpose.
There are <0.0001% of the population who understand transaction risk.
If I pay $Cash for Goods, In a trustless network, both side of the exchange have to be instantaneous. I can never pay cryptocurrency for any item that are not verifiable by the network itself, unless there is another trusted 3rd party (cough cough, Credit Card Processors/Banks).
They could just invest in well-established projects with proven technology instead of obvious scams in hopes of a "moon shot". This has very little to do with Bitcoin and other legitimate projects, which are a far cry from useless fly-by-night ERC-20 tokens with stupid animal names
If you want to push for those technologies, you have to explain how to give consumers a minimum level of protection.
I am working with people in the banking industry to add a layer of protection without compromising core values of crypto (permissionless, trustless), but funnily enough they do not want to do anything against the regulators. Retail banks have become very cautious after 2008 and won't do anything unless they are told to do it by the regulators. And the regulators are a bit clueless, tbh.
No bank in the world will care if someone steals your wallet.
If you didn't notice the total crypto market cap is 2 trillion dollars. People are happy with the way crypto works, most don't want it to be like a bank, but for those that do there is ways to make it so.
Ok i'm exaggerating of course, it just seems like some people are not willing to admit that cryptocurrency does not address certain things that people want out of a money/payments system.
Right now international cryptocurrency transfers are a legally gray area, and have the aforementioned lack of protections. So the expensive and slow, but legal and safe, international transfers are a service that cryptocurrencies don't offer at all. No reason to think it'll be faster and cheaper when it's offered.
The huge popularity of crypto is really eroding the tx capacity advantage.
And even in the backwards US, ACH can now settle later same day and it's free. That makes BTC a lot less attractive.
Transferring funds uses an extremely small amount of gas. You clearly have never used the chain so stop making things up.
Here I sent 11K USD to another wallet for a fee of $10. It was confirmed within 5 minutes. There is no other service outside of crypto that is that fast and that cheap. https://etherscan.io/tx/0x3edc74a15742f65d166dfc9ddb567afabf...
But wouldn't confirmations take, as you said, five minutes on a good day? I see people saying 5-20 minutes typical for Ethereum to reach 30 confirmations. And sure you can accept fewer but 30 seems a pretty widely accepted convention. That's still slower than wire transfers which are functionally instantaneous (in practice of course it takes a minute or so). And right when I looked now the base TX fee is $19.10, which is a few dollars lower than I thought, but I see that it fluctuates by a few dollars pretty quickly so it would depend on the moment. I don't know the Ethereum situation with regards to EIP-1559 in very much depth so if I misunderstand how fees currently work please correct me.
This seems to put Ethereum basically right on par with what my credit union charges for wire transfers. Now $20 is on the lower end for wire transfers on a consumer account (I think $25 is common), but you can also get lower on commercial accounts. It just seems like they're fairly on par with each other from a fee perspective, and Ethereum is at least a few minutes slower.
This doesn't protect against your credentials being compromised, and it's not useful advice unless you can explain your criteria for declaring an exchange trustworthy and how that would have excluded all of the exchanges which have lost their customers' money.
> No bank in the world will care if someone steals your wallet.
Yes, this is why most people use regulated banks which have the fraud handling and reversal processes which cryptocurrencies lack. It's not just that you don't have to carry it with you, it's that there are things like verification and reversal processes which mean that individual people are both less likely to lose money in the first place and more likely to get it back. If you've ever bought a house, the process of verifying a large amount of money being transferred is very different from writing a small check whereas all you need is a typo to lose cryptocurrencies without recourse.
The Winklevosses came up with an elaborate system to store and secure their own private keys. They cut up printouts of their private keys into pieces and then distributed them in envelopes to safe deposit boxes around the country, so if one envelope were stolen the thief would not have the entire key.
https://www.nytimes.com/2017/12/19/technology/bitcoin-winkle...
So these dudes both "saw" FB and cryptocurrencies.
Hate as much as you want on FB and cryptocurrencies, it's still quite a feat to have foreseen both.
Regarding storing parts of the secret here and there: it's basically and "m out of n" scheme AFAICT. There are many variations of this but the overall idea is that you can afford to lose (n - m) parts and yet you'll be able to recover the secret. And if a thief were to steal parts, he'd need m parts to be able to recover the secret.
The difference between a Shamir scheme and a true multi-signature scheme is that the former requires combining the m-of-n pieces to reveal the single private key to sign a transaction, which is a huge vulnerability and single point of failure.
Bitcoin script allows the m-of-n signatures to remain geographically dispersed, each signing the transaction with only their own key, so no single party ever needs to possess the full private key.
In a exaggerated 100-out-of-1000 scheme, even if you steal 99 out of the 100 required shares, you still have zero information. You are better off trying to brute force the value from scratch than trying to use the 99 shares you have.
It's also very simple to implement, making it my favorite algorithm.
[1] https://en.wikipedia.org/wiki/Information-theoretic_security
from my perspective, you are comparing a user experience that has nothing to do with the technology.
a bank is a third party service providing custody to bearer instruments.
a future financial institution will be a third party service providing custody or other protections to your crypto bearer instruments.
> If trillion dollar market caps and god-knows-how-many billions of investment couldn't figure out how to protect consumers after 13 years...
there are DeFi insurance protocols, many people get paid back after being scammed, rug pulled, exploited. Look at the source, it is convenient for this to not be mentioned as all chainanalysis does is sell fear to governments to land contracts.
That's true some times, but then it works like an insurance policy to me. I like insurance, especially when it's about my life savings.
> a future financial institution will be a third party service providing custody or other protections to your crypto bearer instruments.
As you mentioned, that's a bank. There's no reason to believe that crypto-based banks will be any better than traditional ones, especially if you compare to newer fintechs.
> many people get paid back after being scammed, rug pulled, exploited
I was not aware of that, thank you. But it's still too few compare to the whole.
That wasn't the supposition. Who cares? Wait I know people that do care, you thought I was one of those? I view blockchains as a platform to launch projects, and crypto as the necessary fuel to use those platforms, I like the censorship resistance but I don't care about the ideologies, I would like to seamlessly move unlimited sums in and out of them and thats that. I care about fulfilling market needs and niches, I don't care about the accuracy of those needs.
Regarding Defi insurance protocols, there is a lot of education necessary and some ease of use improvements necessary.
Many people think it will be Fintech in the front, DeFi in the back version of crypto that services mass adoption. The big difference is there is global, permissionless infrastructure for anyone to build tools/apps/services on. No more walled financial system, some kid in India can make a new banking app and it can be as useful as hsbc. They can use the same lending protocols, currency conversion, insurance protocols, and then choose what services they want on top. Maybe someone wants their banking app to be hentai death metal themed and all their moeny to be in picutres of dogs(rather than pictures of the queen or a president). Those who want self ownership and to code their own things, or arent liked by the banks (e.g. sex workers, immigrants, travellers) have just as much access to the system. To me it will be kinda like how lots of people are happy with Windows, but a smaller group like the freedom of Linux.
Traditional banking is not perfect by any means, but if 6-figure frauds are making the news, it means they are uncommon. Meanwhile, cryptocurrencies regularly have scams and hacks in the hundred-million dollar range.
Some will say that you can still prosecute the crimes even if you can't initially reverse the transaction, but you can see how well that is working with hackers from adversary nations. Basically no prosecution and risk free ability to move on to the next victim.
"Friction is a feature with money transfer"
My experience is that moving money between countries where there is a high likelihood of collaborative justice against scams and thefts, ends up being pretty simple. It gets harder to transfer money to places where it is easier for thefts and scammers to get away with it.
I think we want it this way. How many people get taken in by the romance scams[1] where they wire their money to a country with 0 chance of recovery. The money transfer system has been specifically making it more difficult to send money to countries where this is commonplace as that is the only effective way to stop the crime. There is no viable criminal process only friction to make it less profitable and more difficult for the scammers.
[1] https://www.fbi.gov/scams-and-safety/common-scams-and-crimes...
For example, today the 5-member Advisory Board has unilateral power to change the contract as they see fit[1], and only the smart contracts have been audited, not the organization itself[2].
The only information about this all-powerful Advisory Board is on the home page, and I'm forced to take that at face value. What happens if I put my money there, the board runs away with it, and I try to sue them only to find out that these five people don't exist, or are not related to the project? This is far from the basic security level of any traditional financial institution.
Again, I have major respect for this team. The service is useful, and the documentation is honest and comprehensive. But a blockchain plus this insurance does not make a safe consumer space.
[1] https://nexusmutual.gitbook.io/docs/users/understanding-nexu... [2] https://nexusmutual.gitbook.io/docs/welcome/audits-and-secur...
-Gordon Gekko
I have zero sympathy for the victims. Stealing from cryptocurrency weenies is almost a public service, like confiscating booze and car keys from teenagers.
Also, I accidentally sent money to the wrong address, is there a support number I can call to reverse that?
Default meaning, the Gemini coin will be worthless when you try to withdraw. You could try to ride 8% junk bonds for 3-24 months too.
I am unsure how they are doing it but I presume they are using a technique similar to the "Arbitrage in Dual Classes" for stocks. Basically you bet that the price of the class A and the class B of a stock will eventually merge to the same or a very similar price. In this case I think they do this with the BTC spot and future price.
This technique worked well for stocks until 2008 when they all got REKT in the Volkswagen Class A stock short squeeze and lost everything. One guy went from billionaire to broke within one day and jumped in front of a train... I have the sad feeling this is going to happen again.
As a bonus, Celsius also claims to do Rehypothecation, the thing that caused the subprime crisis.
Have fun "unbanking" yourselves.
I also wrote a blog post about the safety crisis in smart contract development: https://timdaub.github.io/2021/12/08/illuminating-the-dark-f...
Arizona has a stupid motorists law [1]. If a car “becomes stranded after driving around barricades to enter a flooded stretch of roadway,” the driver “may be charged for the cost of their rescue.” A similar concept for crypto may be necessary. Law enforcement will pursue. But if they catch the crooks, the cost of enforcement is deducted from the proceeds and flows straight to the Treasury.
[1] https://en.m.wikipedia.org/wiki/Stupid_motorist_law
Find out how much money we can get policing crypto. We can even charge a greater percentage of potential funds recovered to extract an amount that would make it worth our while. At any rate, with that data we could determine if the money is better spent policing tax cheats.
In short if we're going to get paid well, we should help. If not? Well, sorry crypto bros. Sucks to be you.
It's certainly not the government's job to jump in and prop up financial systems in which it's not involved. Its interest is in protecting its own citizens from criminality, not in the level of "trust" in "DeFi".
I thought the whole point was to be trustless?
Society relies on trust. The crypto dream that it can be trustless is just a way to cheat people.
It is if you're trying to stop these scams by putting greater constraints on, say, the fiat on- and off-ramps.
I mean, how exactly are you going to stop the average investor in doing something dumb like dumping their money into a shady project, without placing additional hurdles on everyone else? The whole point is that you're allowed to move, manage, and spend your assets as you see fit, without any government's ability to freeze your assets or block you from accessing financial services via sanctions -- for better or for worse, of course. And yes, the freedom to manage your assets as you see fit includes the freedom to make stupid financial decisions -- as you see fit.
That’s a selling point advanced by crypto advocates.
Frankly, it’s ok to make that point. What is not ok is pretending that crypto isn’t also a high risk environment full of scams.
I’m not trying to police anything. I can’t stop crypto advocates claiming it’s a good place for regular people to invest.
I don't pretend that at all. Like I've said elsewhere in this thread, "caveat emptor." I am sorry if others have told you that is not the case about crypto. Unfortunately, I cannot do anything about them.
> I’m not trying to police anything. I can’t stop crypto advocates claiming it’s a good place for regular people to invest.
Then we are in full agreement. As I said elsewhere, the average Joe who cannot remember their own passwords should not be using crypto, IMO. With freedom comes the freedom to shoot yourself in the foot, and unless you understand basic digital safety procedures, you are best off not shooting yourself in the foot.
Yes, I agree with you on this.
However this is far from the dominant narrative coming from crypto advocates. That is all I am objecting to.
Open systems lead to less trust required, because anyone can verify and report issues. Open finance leads to less trust required because anyone can verify and report issues with the smart contracts.
.. anyone who finds an issue in a smart contract can just steal it. Potentially all of it. Pseudonymously.
No, they have.
https://www.cvedetails.com/vulnerability-list.php?vendor_id=...
That's just less important than running free software to some people. For better or worse.
But the existing system latches onto any point of centralization in any kind of alternative and uses it to impose the same problematic constraints of the existing system that the alternative was intended to redress. Hence the desire for decentralization. The lack of those pressure points.
It would work well enough if we would just have multiple banking systems and let them compete with each other without international pressure to conform to a uniform set of defects, but that isn't what we have. So how do we fix that, if not with this?
No, it is not trustless, it simply shifts trust from central authorities to more nebulous entities such as anonymous developers, shady mining cartels, unregulated exchanges, and even yourself to not lose your private keys. Which you consider to be better is essentially a political decision.
Traditional banks should exist and be regulated and insured etc. People with a low risk tolerance should be encouraged to use them.
People with a higher risk tolerance or who are trying to do something innovative or disruptive should have a system that works for them too. People with a low risk tolerance are not required to use it. People with a high risk tolerance will be exposed to a high risk, as requested.
But it does nothing for transactions outside of that world. The core idea behind the "DeFi economy" is making things happen in the real world (by financing business ideas, buying 230 year old documents, etc...). And that part requires that the crypto resources be given to some kind of real actor in the real world who's going to do something real with them.
And those actors are people, and they cheat. Hence the new term of art "rugging". You can cheat people in the crypto world, in some sense, more easily than you can regular consumers precisely because they got fooled into thinking they didn't need to trust you.
Social engineering and financial hacks are not fair game, and are "illicit" in the sense that crypto is obviously an international martial zone.
Exhaustively brute forcing a keyspace is valid, making your username an XSS to steal funds from an insecure page/downstream app is not valid.
Finding and leveraging an exploit in a contract is valid, both a paper/legal contract and a literal codified Eutherem contract. Flashing incorrect token prices on CoinMarketCap.com to take advantage of (unauthorized? grey) downstream screenscrapers and rugpulling affected tokens is NOT valid, but, admittedly murkier.
>You cannot legally rob a bank just because they left it unlocked and unmanned.
Exactly - because it isn't a bank, it is a bunch of cash on the street, if it was unlocked and unmanned.
And even if there was a clear Sticky Note with foreboding text, you would be in the clear to pocket a stack of cash sitting on the sidewalk, left unattended, guarded only with a sticky note.
The steelman and strawman are nearly identical - a bugged contract or implementation isn't a bank, it is a bunch of cash on the street. It stopped being a bank once a bug was found.
If you found a gift card with the PIN in the street, it would entitle you to a moral inhibition. If you went through a stack of discarded gift cards and found ones with change, you would be less morally wrong, but just as legally right.
Finding a debit card in the street with the PIN is akin to finding someone's wallet.dat file on their github. That is stealing, so no comparison.
That's not true, and not true globally. Unattended valuables being taken is still theft. Though prosecution is rare, it still happens [0].
[0] https://www.macaupostdaily.com/article12506.html
But if you leave your valuables in the street unattended and then come back shocked to discover that they aren't where you left them, this is not a problem that requires new legislation to solve. The solution to preventing this from happening to you in the future is quite obvious and doesn't involve the government.
And if the government manages to catch the thieves, great. But if they don't, c'est la vie.
It still gives me delight to remember that. I needed the money, but the continuing pleasure in recalling has been worth far more.
Nobody suggested making crypto crimes legal. Just metering the degree to which law enforcement, a public good, is put to use pursuing it. Why should a law-abiding saver bail out what in many cases looks like a gambler’s foray?
Because having an idea about how these frauds are committed are helpful for society as a whole. Law enforcement investigating such crimes is the first step towards meaningful laws and regulations.
Acting as though these crimes never happened because they're not enshrined somewhere in the criminal code is cutting off one's nose to spite the face. The negative externalities will still be there, and they will land squarely at society's doorstep. We will all have to foot the bill one way or another.
Everyone's a rugged individualist until they get rugpulled.
The guarantee that a bank gives is not the same guarantee that a smart contract gives you. the bank guarantees the safety of your money, the smart contract guarantees that it will as stated in the code.
It's on the the contract dev to write the correct thing and on the contract user to determine if the does what is "says on the thin"
And they routinely admit that some cases are not clear cut. But crypto has no grey zones, by design - you either have the keys, or you don't. And that is the explicit agreement code-contract signers agree to when they go out of their way to DeFi their agreements.
Obviously legal precedents and statutes are not fitted for this purpose yet, because they are reactive, not proactive.
Furthermore, when you talk about the court you're talking about a Judge. The Judge gets final say and they can take their sweet time, regard or disregard anything they want. In local matters, Judge's act without restraint. Appellate court, the state bar, the judicial qualification board, federal court, all gets involved so rarely they can be ignored. Additionally, these Judges are no stars of the legal profession: cohorts of lawyers will often rig elections and appointments to favor a well-connected but bad lawyer, because being a judge is actually really easy.
So, yeah, it mostly depends on who the judge likes better, and whether society is better or worse if this dispute is decided this way or the other way. I can't stress enough the arbitrariness, and supreme unaccountably, of a local judge's decisions.
Exactly. Code-contract signers hate this, and go out of their way to avoid the possibility of this interference.
Judges should tell crypto cases to get rightfully fucked.
If I appear and sue a drug dealer for giving me fake 100's, I'd get laughed at.
Considering crypto is just an massive abstraction layer to hide the online drug trade, the courts should similarly laugh at these _technical_ exploits, in the context of Euth-shit code. Because it's sole explicit purpose of existence is to conduct business without arbitration.
Is that actually true? On the criminal side, I served on a grand jury, and a lot of the cases we saw were criminal-on-criminal crime. I guess the idea driving the crime was that criminals make easier targets as they're less likely to go to the police. But some did.
The net result is a system where attorneys are falling over themselves to prove who is more obsequious to all the judges. If you become a problem in one case, you will suffer in your other cases, too, so individuals with legit complaints against the court can and will be ignored.
The net result is a court that ignores all but the most mechanical rules (and loves to stall on those when it can, because it approximates the appearance of "work"), and has no mechanism for correction. I'm sorry, but the rules don't really matter, to anyone.
Your assumptions about the law, about judges, and about rationality, rhetoric, and the justice system in general are about to be destroyed. The lawyers know the high variance of court and generally want to avoid court like the plague.
(The justice system is badly broken, obviously. The core issue is that it takes far too long to judge a case, and a big reason for that is a) the rules are too complicated and b) not adopting better tech. We should have trials that start a week after filing, with online juries, online judges, and real-time access to data. The attorneys can finally earn their ridiculous wages by learning how to fly through information and present it in a compelling way.)
Some civil court hearings are already conducted online.
I don't see how they're unaccountable, or how contract disputes mostly depend on a judges disposition.
No, they're not. They're entirely reasonable. Stop trying to shame people for expressing a common, reasonable and fair opinion that you don't like.
They may be in search of outsized returns, but I think people can absolutely be victims of the ‘have fun staying poor’ meme. The implication is that if you don’t buy into crypto your assets will be decimated by inflation. I think it’s reasonable to consider that it’s not ‘greed’ but rather fear of being left behind that is driving many victims.
So your environmental criticism of Proof of Work is not applicable here. A PoW coin with no premine doesn't allow for a rug pull.
I realize the dangers of posting something remotely pro-crypto on HN, but I have to say this is a pretty rich comment. Shame is all that is doled out to the many people who have reasonable and fair opinions about cryptocurrency that you don't like (such as thinking some cryptocurrencies are reasonable or worth speculating over).
If anything, I'd say the corner is turning and the previously pro-crypto HN is just now becoming more anti-crypto.
I agree. They are not unreasonable. They are crass. If a child is told not to touch a stove and then burns herself, I may consider them stupid, but I can still have sympathy for the pain they are experiencing.
I hate civil forfeiture. That’s why I specifically suggested the proceeds flow to the Treasury. Not the law enforcer’s budget.
There is also a world of difference between taking something you legally possess, and taking a cut of things returned to you at the expense of the public purse.
There are exactly two types of people in the crypto space:
- scammers, who know exactly what they are doing
- fools, who have very little understanding of how the world works
And yes. Fool and his money are easily parted.
So, are the comments crass? No. Not in the least.
When we talk about law enforcement stepping in, I struggle to see what they could possibly help with in scenarios like this. TBH the FTC or SEC needs to step in and investigate these instances.
[1]: https://www.youtube.com/watch?v=3Xw9rWmTQfc
Even now they’re rationalizing - US banks offer 0% interest and took $12B in overdraft! See how much worse that is? Well except the $12B is out of $18T in assets so DeFi hacks cost 1400X as much per user.
In fact 10% of all TVL in DeFi was stolen this year. That means if you’re not making a 7% return for inflation and a 10% return for risk loss, you’re losing money in real risk adjusted dollar terms invested in DeFi. 17% APR in DeFi is equal to 0% in real dollar terms.
https://www.cnbc.com/2021/12/10/consumer-price-index-novembe...
[1] https://www.treasurydirect.gov/indiv/products/prod_ibonds_gl...
[1] https://defipulse.com/
> Rug pulls have emerged as the go-to scam of the DeFi ecosystem, accounting for 37% of all cryptocurrency scam revenue in 2021
So 37% of $7.7 billion is $2.849 billion.
> All in all, rug pulls took in more than $2.8 billion worth of cryptocurrency from victims in 2021.
> It’s important to remember that not all rug pulls start as DeFi projects. In fact, the biggest rug pull of the year centered on Thodex... In all, users lost over $2 billion worth of cryptocurrency, which represents nearly 90% of all value stolen in rug pulls. However, all the other rug pulls in 2021 began as DeFi projects.
The graph shows $2.6 billion was lost with Thodex. So that leaves $0.249 billion that was lost in projects that were rug pulls that began as DeFi projects.
"i am going to retire in 5 years. have you heard of prove-your-steaks? its gonna change crypto. you can get 20% back, just lock up your starving kids Earned Income Tax Credit for a year, and you'll make $500!"
"have you heard of this new shitcoin? probably not - i know you retired from crypto! haha...anyway, it exposes you to upside leveraged of @PISSCOIN and is tethered to the stable-genius coin. its basically free Unisex-swapped tokens."
"hey. some guy on discord was helping me install a chrome plugin to manage my coins and now my $400 in life savings is gone...are you still good with computers?"
"Turns out my pension fund was investing in BBB- CDOs, now they've gone BBBust"
The argument that you can't (or don't) get burned in non-crypto markets is made in bad faith.
Pension funds don't deserve to go bust, but shouldn't be bailed out if they fail to diversify their portfolio.
There are a lot more safe-gaurds in investing, because all these games have been played before.
But those require consent too - with crypto, someone can, and will, irrevocably steal your funds without possible recourse.
a large majority of those people fall into the greedy category not the victim
My understanding of the idea is this:
1) Using distributed code, the operation of which is assured by code on a blockchain based system like Ethereum, lending and investment can happen without the intermediation of banks and capital markets gate keepers. The savings from cutting these layers out can be shared between the supply and demand side of capital.
2) On a temporary basis only, some element of the rewards of contributing external capital, computational power, or other resources to a particular pool of capital are "extra" on top of the core capital allocation function of the pool. These can be structured in various ways but essentially the idea is to bootstrap money into the pools through a reward system that declines over time.
3) If the core proposition, that there is gain to be had from the disintermediation, is true, then at some point pools reach a sort of "ignition" point where the pool exists for that purpose only and the temporary bonuses are no longer required. This would mean that despite structural similarities, these are not Ponzi schemes since there is an eventual state reached were a real function is being performed. Some people will stop contributing to a pool as the rewards taper, but that won't matter because most of the money is now in there to be lent out for profit.
4) If that core proposition is not true, then they are Ponzi schemes because all the growth is coming from the rewards.
My problem with (1) is that these are already relatively low margin activities so how can there be enough disintermediation to go at once you account for the default and scam risk on the side of the borrower? It isn't the case that capital is expensive right now, tech investors are giving it away like its going out of fashion, headline borrowing rates are incredibly low, PE is going crazy buying everything. It's also striking to me that the promoters of these DeFi schemes spend so much time on bringing in new lenders but very little seems to be done on the borrower side. Surely if you're building a sustainable capital allocation business, you need a pool of borrowers? Ideally one in a business where they can provide substantial collateral for their loan, support high returns, but somehow can't access other forms of finance (but not because their business is illegal). That would seem to be a rare commodity so I'm surprised not to see pools fighting over access to these borrowers.
Like paint on paper costs almost nothing until it has the right artificially scarce provenance and becomes a work of art, some cryptocurrencies can become valuable to hold and trade in and of themselves thanks to perceived scarcity.
Apparently the answer is "crypto margin trading".
One example of a "rug pull" is that the team provided liquidity to the AMM liquidity pool, and then removed it, leaving people with no where to trade the token. Its honestly hard for me to call that a scam, although I understand the community expectation being undermined.
First: the SEC exacerbates this reality. Tokens that don't want to be considered a security have to consider NOT providing an expectation of liquidity. The team has to avoid expectations of providing secondary market liquidity just to stay out of the crosshairs of the SEC. And even in SEC registered land, If you look at the "risk factors" section of public equities, they frequently say "there may be no market for these securities, a secondary market may never form, there is no guarantee that it will always be there", which is true in all markets!
Second: with the advent of AMMs, ANYONE can provide assets into the liquidity pool. (even the acronym of AMM don't tell you much about what this is, its just a different model of exchange that is very popular). So even if token traders had been relying on the team under an unspoken symbiosis of the team providing liquidity, the token traders now can do it themselves. This is also very common. The token traders typically follow incentives to actually do it, but they CAN without those incentives.
Third: Token traders are the community and can take over any project to try to make their investment more profitable, it just requires more risk. It happens, but the times it doesn't happen the token traders just stop engaging with the project as well.
How can this be distinguished from other "rug pulls"? I don't think it is possible.
If the team went through all of these steps with the intention of pumping the value of the coin, hyping others into buying it, and then extracting as much money from them as possible with no intentions of helping the coin succeed long-term, that seems like a scam to me.
The victim-blaming mentality runs deep in the cryptocurrency world. It's fascinating how many people in the cryptocurrency space are reluctant to call a spade a spade only because the underlying blockchain or algorithmic rules weren't violated.
My point stands that the community can do what the team did but fail to take further risk or organize. They disperse just like the issuer did, when in fact they do all have agency and can fill the vacuum. unless the token was backdoored, then we can call it a scam.
these are colloquially called rug pulls, because the liquidity pool was the rug. these happen so fast these days. These things can play out completely within 20 minutes, as bots and individuals are scanning the blockchain mempool for erc20 token creation transactions and liquidity pool creation transactions, just to get into a potential big project before anyone else.
here, the traders are at no disadvantage to the issuer, from a community perspective, to continue the project and attempt making their investment valuable, specifically by adding to a liquidity pool themselves.
again, my main point is that things that are very common are not being distinguished from whatever you or others want to argue about. its an article about this year, not 2017, not 2018, or some other year dominated by an antiquated style of ICOs.
there is something to debate, but the vocabulary itself doesn't allow it, perpetuated by an organization that gets no benefit from distinguishing as all they want is technology contracts from governments.
I think "rug pulls" is not defined well.
It's a standard type of investment scam, "take the money and run". The SEC even has a video for the clueless.[1] And a web site on ICOs.[2]
This scam long predates cryptocurrency, or the Internet. Newspapers made mass-marketing a scam possible. That started about two centuries ago. Most scam types, like this one, are old. They just keep coming around in shiny new wrapping paper. This isn't innovation.
[1] https://www.youtube.com/watch?v=FSBMSSnZ4Ro
[2] https://www.howeycoins.com/index.html
> It's a standard type of investment scam
But upon a second reading, I don't think you get my point that there are categories of things called "rug pulls" and the chainanalysis article does not distinguish well. I also think distinguishing is not possible to reach consensus, right now, but attempts should be made.
People have a right to spend their money on things. If the choose to spend their money on nonsense that has no contractual obligation to return their funds to them that seems like a legal transaction when the funds don't get returned.
I do feel for some of the people who thought they could have a better life by 10xing or 100xing their networth on scam coins but the reality is they didn't do their research and willingly walked into this.
A lot of decisions we make in the modern day have guardrails set up to protect the individual to a varying extent (which is often a topic of politics), so it may be we eventually get guardrails in the crypto space as well.
A lot of value of crypto is based on a small volume of transactions to cash which give a number to the entire asset.
If I create 1B secret numbers, sell one for $1, and someone steals the rest, is anyone really out a billion dollars?
it's not hyperbolic, there is a lot of liquidity in this multi trillion dollar market.
although if you're asking this question, the next point might dilute my prior point to you, but a reality is that many people aren't seeking fiat. They don't want dollars. They want more crypto. For physical goods and services there are also enough closed loops to acquire whatever is desired without touching dollars. For digital goods and services they can already be acquired for crypto.
But outside of that, charities accept crypto donations. Private equity firms accept crypto in-kind investments as the third party fund administrators have also updated their technology. Politicians accept crypto.
No different than any of these entities accepting stocks or bonds, and considering to liquidate some eventually. Except the crypto is more easily exchanged for goods, services, donations, investment.
it shouldn't sound absurd, but if it does, just remember that they can also get as much cash as they want whenever they want.
Why was this necessary to say at all?
like the people who say
"$X is not that much these days" (it is and they want it)
"That billionaire doesn't really have that much money" (billionaire then sells 10% of their holdings in 3 days for billions of USD)
"What about after taxes?" (pay for an accountant, you'll see its better than you think)
and the reality is that liquidity changes faster than the culture. especially across all markets over the last 2 years. so its time to force that introspection.
So you're intentionally being insulting, then. And you see that as necessary?
my dig is about introspection, how many other times have they made an excuse to miss all the alpha? are they actually comfortable with the decisions they've made, maybe they are. it just gives them an out to believe whatever they want. sentiment in the crypto space has generally gone this direction right now. everyone is aware of all the arguments against being in the space from traditional finance minded folks, and simply check their stocks and their crypto on two separate screens daily anyway.
Something doesn't add up.
https://news.ycombinator.com/newsguidelines.html
[0] https://www.crowe.com/global/news/fraud-costs-the-global-eco...