Identity spoofing incident in LT MeshCore network #1859
Description
Hello,
I am observing suspicious activity in the Lithuania MeshCore network public channel. Within a short time window, multiple different usernames started posting identical short messages (e.g., “wajo”), with varying hop counts (1–3). The pattern looks unusual and could indicate identity spoofing or some form of message injection rather than normal node behavior.
I can also see messages posted under my own name, and I am absolutely certain that I did not send them. I have asked a few other users whose names appeared in the channel, and they also confirmed that they did not post those messages.
I am trying to understand whether it could indicate a flaw or edge case worth deeper analysis.
It might be an interesting precedent of network-level misbehavior that could help improve identity validation or message integrity mechanisms in the application.
I can provide logs, screenshots, firmware versions, and additional context if that would help investigate further.
Example message in analyzer: https://analyzer.letsmesh.net/packets?region=VNO&packet_id=179673962
