security architect, former pentester, Luddite
history books junkie, cloudspotter
married with children
South Korean #cryptocurrency exchange #Bithumb had accidentally sent more than $44 billion worth of #bitcoins to customers as promotional rewards, triggering a sharp selloff on the exchange. #fail
https://www.haystack.tv/v/south-korean-crypto-firm-sends-users-44-bln-bitcoins-error
“In multiple instances, #cryptocurrency seized by the government was stolen from the government after the seizure.” https://securitiesanalytics.com/cryptocurrency_traceability/
"Democracy is now back to 1985 levels according to some metrics, with 72 percent of the world’s population now living under autocracy. Russia and China are less free today than 20 years ago. And so is the United States".
-Human Rights Watch, World Report 2026
#OnThisDay, 7 Feb 1971, women in Switzerland win the right to vote in federal elections after a national referendum. One canton continued to deny women the vote until a court case in 1990.
Snail pic is from a suffrage protest in 1928 which was complaining about the slow progress towards #VotesForWomen.
In politics, what is believed has always mattered more than what is true. The difference is that today, AI can manufacture belief at industrial scale and zero marginal cost.
https://foreignpolicy.com/2025/09/18/ai-propaganda-information-warfare-systems/
Does this Anthropic Red Team blog about the LLM finding vulnerabilities mean we're all doomed? I don't think so. So I wrote a blog about it
https://ai-skeptic.bress.net/blog/0012-anthropic-vulns/
The smart people will figure this out, but there will be slop along the way
@joshbressers @briankrebs I'm using plenty of AI tools to find flaws in curl code, and they do it quite well. They are however still not very good at fixing the bugs adequately in my experience. I suppose this is because fixing is often a matter of taste, architectural decisions and actually understanding the problem. All of which the LLMs lack.
Pretty bold claims by #Anthropic but they seem to be having results:
“#Opus 4.6 is notably better at finding high-severity #vulnerabilities than previous models and a sign of how quickly things are moving. [..] what stood out in early testing is how quickly Opus 4.6 found vulnerabilities out of the box without task-specific tooling, custom scaffolding, or specialized prompting. [..] pointed at some of the most well-tested codebases (projects that have had fuzzers running against them for years, accumulating millions of hours of CPU time), Opus 4.6 found high-severity vulnerabilities, some that had gone undetected for decades.” #sast #security
https://red.anthropic.com/2026/zero-days/
🇬🇧 Meta shut down the account of our citizen's initiative for Digital independence in Finland. What’s next? 🤔
Our citizens' initiative advocating for digital independence just experienced a stark example of what reliance on foreign platforms means. Meta, which owns Threads, shut down the initiative’s account, citing breaking of community standards.
3/
@dangoodin BTW you can quickly and disable #biometrics in #emergency on #iPhone, most people don’t know about this simple trick https://www.macrumors.com/how-to/disable-touch-id-face-id-ios-11/
Update: With newer iOS versions, you might want to go into Settings (search “SOS”) and consider disabling automatic calling, depending on what kind of emergency you expect..
#opensource “Practitioners have been repeatedly assured that #AI would supercharge their communities, but so far that hasn’t been the case. [..] Now anyone can generate plausible-looking contribution with zero understanding and zero effort. The volume has overwhelmed the system. [..] There is now an order-of-magnitude shift in the volume of #garbage flowing into maintainers’ inboxes.”
https://redmonk.com/kholterhoff/2026/02/03/ai-slopageddon-and-the-oss-maintainers/
“The top downloaded skill was a malware delivery vehicle” https://1password.com/blog/from-magic-to-malware-how-openclaws-agent-skills-become-an-attack-surface
#openclaw #ai #malware
Dear f***ing lord!
Nearly one every three Meta ads showed in the EU and UK over 23 days pointed to online scams
This should be the easiest layup for govt agencies in the history of enforcements
https://www.gendigital.com/blog/insights/research/scam-ad-machine-meta
RE: https://mastodon.social/@firefoxnightly/116006051081305175
The "AI kill switch" was developed with a lot of internal feedback and based on user complaints.
Does it work for you? If not, let us know.
@augieray The United States Naval Academy considers HC a “chemical weapon”.
@snow I have 20y old AEG Electrolux microwave which is actually smart enough to not show any time if it has not been set.
We knew this was coming, but now the clock is running. From Privacy International:
"Yesterday the Trump Administration announced a proposed change in policy for travellers to the U.S. It applies to the powers of data collection by the Customs and Border Police (CBP)."
"If the proposed changes are adopted after the 60-day consultation, then millions of travellers to the U.S. will be forced to use a U.S. government mobile phone app, submit their social media from the last five years and email addresses used in the last ten years, including of family members. They’re also proposing the collection of DNA."
PI linked to and summarized a Federal Register entry describing the proposed requirements:
-All visitors must submit ‘their social media from the last 5 years’
-ESTA (Electronic System for Travel Authorization) applications will include ‘high value data fields’, ‘when feasible’
‘telephone numbers used in the last five years’
-‘email addresses used in the last ten years’
-‘family number telephone numbers (sic) used in the last five years’
-biometrics – face, fingerprint, DNA, and iris
-business telephone numbers used in the last five years
-business email addresses used in the last ten years.
The Federal Register entry says comments are encouraged and
must be submitted (no later than February 9, 2026) to be assured of consideration.
Federal Register entry: https://www.govinfo.gov/content/pkg/FR-2025-12-10/pdf/2025-22461.pdf
Ocean waters are aging? What?
Yes: we oceanographers call 'age' the time since deep ocean water was last in touch with the atmosphere. It is a measure of 'ventilation', deep vertical overturning of the ocean.
Data show this process is slowing: #AMOC slowdown.
That is bad news for climate, and there is a serious risk of the AMOC crossing a tipping point in the next few decades towards an unstoppable shutdown. One of the worst-case climate change nightmares.
https://www.geomar.de/en/news/article/belueftung-des-nordatlantiks-nimmt-ab
