sambiohazard, all stake pools have the same code base, and to stop your fear, uncertainty and doubts I'm constantly update Dcrstats Stakepool to newest versions and add new security features to protect your accounts (2FA coming very soon, it's been successfuly tested in Evolution already).
So, first of all, if attackers will find a vulnerability in the stakepool or decred software, they won't attack only one biggest pool, but all of them. And you know it doesn't matter then 1 pool with 25% or 5 pools with 5%. Actually, yes, it matters, because I don't know how serious are all 9 pool operators, but our reaction and hot-fixing will be super fast.
Even if hackers can take control under all 10 existing stakepools (c0 + 9 from rfp), what can they do in the short terms? Do not include transactions in next 10 blocks? To destroy next 10 blocks? Even if they will take control of all stake pools, it cannot be a 1-minute attack. Hackers will have to maintain all the infrastructure and pay for the hosting of more than 40 servers, which are not cheap
PS: so far you are the only person who don't like something and who is going to attack the network.
I definitely agree with sambiohazard in this respect, and I'm pretty sure others do as well. I've voiced my concern for a healthier network distribution before, and this initiative, to me, is a step in the wrong direction. Nonetheless, you're providing a staking alternative for the less technical users, so kudos for that.
Folks, please consider joining any of the smaller PoS pools. Thanks!
