Incurably curious about everything computer security, even after too many years in the business. Also, I write things.
tootfinder | tfr | searchable
Huge day in the United States today - as we join together to celebrate one of, if not, the most beloved President in all history.
A man who could sit through a meeting in front of the worlds press without falling asleep.
A man who can speak words in complete sentences.
A man who appears to actually quite like, and be liked by, his wife.
A man whose walking and gait are unquestionably normal, without relying on a team of allies to constantly remind every one of this.
A man with zero felony convictions.
Happy Barack Obama Appreciation Day!
The odd one out.
I love this photo. While the fediverse already feels like a lot at times, in the grand scheme of things, it's probably still the weird purple loner, and I like it like that.
đïž Dreaming of a world without war, where the ruins and relics fall silent and are left discarded. A collection of some of my photos of abandoned military remains all over the world.
Cold War bunkers reclaimed by the forests. Fallen communications dishes. Rusted tanks frozen in place. Grounded planes.
Photos from Hungary, England and Germany
#ColdWar #AbandonedPlaces #History #Photography #Urbex #Abandoned #UrbanExploration
NEW: The Kennedy Center is a reminder that we can win, it will be messy, and Trump will be petty.
The illegal effort to put Donald Trump's name on the Kennedy Center has always been a metaphor â but, this weekend, it became a story of how we get through this.
Tonight, at Law Dork: https://www.lawdork.com/p/kennedy-center-naming-trump-beatty-lessons
A court in Munich declared that Google is liable for their "AI summaries" and all its hallucinations. This is an important step to bring "AI" slop in line with all other products on the market: "AI" products are basically the only ones where a provider can just deliver unchecked garbage and put all the liability on the consumer. I hope to see aggressive change here.
A German regional court has ruled that Google is directly liable for the content of its AI search overviews. According to the court, previous limited liability protections for search engine operators don't apply to AI overviews. In this case, Google's AI had falsely linked two publishers to fraud and made claims that didn't appear in any of the linked sources. The ruling could set a precedent for AI-generated content liability worldwide.
So here's the other thing that bothers me about all this. Regardless of the eventual results, this thing they're doing is *incredibly* resource intensive. They routinely spend billions of dollars on training these models, and billions more on operating them. It's not simple to parse out what fraction of that is directly attributable to the massive scale vuln finder/fabricator. But for the sake of argument lets just pick a plausible number, and call it 50-100 million dollars.
What could we have gotten for 50-100 million dollars of sponsorship for security audits? Prior to this, the largest single investment into FOSS security I'm aware of was the 2015 audit of openssl, after the heartbleed incident. It's hard to find precise costs for that, but I found a few sources estimating 1.2 million dollars, and that is arguably the most security critical piece of software in the world.
But suddenly there's 100x more resources available to do this work, now that producing the artifact can be done with stolen labor? Now that they can externalize the cost of false positives onto the already mostly unpaid maintainers of these projects? Even if their claims are true, which we have no reason to believe and very good reason not to, it's still a travesty
BrianKrebs
Hacker News
A-Dub đ„
Mike Sheward
asmw
Obsidian Urbex Photography
Chris Geidner
tante
Jenniferplusplus