Jernej Simončič �

@jernej__s@infosec.exchange
253 Followers
147 Following
21.3K Posts
Websitehttps://eternallybored.org/
Show threadJernej Simončič �4h ago
@Viss @ridge VRAM? 16 MB RAM was '95 era, in '99 when I bought a Celeron 400 I went with 128 MB (and upgraded that to 256 MB quite quickly).
Show threadJernej Simončič �6h ago
@0xabad1dea No, no, you don't understand! It's AI, it should learn on its own how to figure out the timezones!
Jernej Simončič �6h ago
ari 6h ago
fn main() {
let i = 5;
println!("{}", i-- --i)
}

This will output 10 because it's decrementing -5 from 5, in other words, 5 - (-5) → 5+5

Jernej Simončič �6h ago
abadidea6h ago
if anyone wants to laugh at AI, a friend of mine googled "new york time" and got an "AI summary" claiming 7:14 pm (wildly wrong, it was about 2 pm) and then 40 minutes later I tried and also got 7:14 pm
Jernej Simončič �6h ago
Jon S. von TetzchnerJul 5

I asked the question : Do you want a laptop with Copilot+?

1% said yes.
96% said (hell) no.
3% were not sure.

This is a great example of something being pushed that most really do not want.

Big Tech is very focused on winning the AI war. Problem is, that in their eagerness to do that, they focus just on what they want you to do, instead of what you want to do.

#Windows #Macos #Linux #Microsoft #Computer #Spyware #AI #Copilot #Technology #Vivaldi @Vivaldi #BigTech

Jernej Simončič �6h ago
Mike Masnick7h ago
For the past two years on Techdirt we've referred to X as ExTwitter, which got across the point of what it was. But I'm now calling it X. Because Twitter is well and fully dead. X is purely a personal propaganda platform of Elon Musk that has nothing to do with what Twitter once was.

RE: https://bsky.app/profile/did:plc:l4edfel22exejp7mewt6f3ky/post/3ltwwwhypgb2s
Jernej Simončič �7h ago
Neil Brown8h ago

The UK Environment Agency has some tips for the public to help conserve water, including

> Deleting old emails to reduce pressure on data centre servers

I kid you not.

https://www.gov.uk/government/news/england-faces-5-billion-litre-public-water-shortage-by-2055-without-urgent-action

England faces 5 billion litre public water shortage by 2055 without urgent action

England faces 5 billion litre a day shortfall for public water supplies by 2055 – and a further 1 billion litre a day deficit for wider economy.

GOV.UK
Show threadJernej Simončič �8h ago
@erincandescent @nina_kali_nina Yeah, there was a spec, but I don't think anything ever implemented it.
Show threadJernej Simončič �9h ago
@nina_kali_nina Is this an actual HDMI-alt mode over USB-C, or something proprietary? (I was under the impression that nothing ever implemented HDMI-alt, which is why it was dropped from USB-C spec).
Jernej Simončič �9h ago
Thomas 🔭🕹️10h ago

"USA is the hottest country in the world"

Nice to see Republicans acknowledge climate change

×
JayeLTee3d ago

I received an email earlier this week from EA asking if I wanted to be added to a public acknowledgement page they were creating for individuals who responsibly disclosed vulnerabilities to them.

For all the shit people give EA, of the 100+ companies I contacted in the last two years, they were the only company I would say had a decent incident response.

They fixed the issue within 12 hours after validating it as critical, and proactively provided me multiple updates over time.

When the IR was done on their side, they reached out again with some more information about the potential impact if the issue hadn't been solved quickly, and also offered me a reward.

I did not have to keep chasing anyone for updates, I wasn't asked for non-disclosure, or offered money in exchange for it, and people replied instead of ignoring me.

I wasn't blamed for their mistake, either, or reported to the authorities.

Unfortunately, at least one or multiple of the things mentioned above are present in most of my other incidents reported; it's a real shit show out there.

#cybersecurity #infosec #responsibledisclosure #vulnerability #ea #electronicarts

Show threadlp13d ago
@JayeLTee I've almost stopped reporting vulnerabilities because of the issues you mentioned, got the same experiences. Good to know that EA is mature on their communication with security researchers!
Show threadSamantaz Fox2d ago
@lp1 @JayeLTee With the European Curbesecurity Resilience Act (CRA) taking effect since the beginning of the year, big corps should better set up a proper cybersecurity incident response process quickly, or it will bite them. The CRA requires prompt response and public communication when they're given a security vulnerability report.
Show threadDissent Doe  3d ago

@JayeLTee You definitely deserve a lot of credit and public recognition for your volunteer efforts to find leaks and get them locked down.

It's just a shame that it's such a rarity that it happens.

Show threadAdam Shostack  3d ago
@JayeLTee A lot of the EA team followed Matt and Mike from Microsoft, but more, they’re setting the tone well.
Show threadAdam Shostack  3d ago
@JayeLTee But also: let them know that it makes you happy to work with them. I’m sure emails like that help keep the program operating well. (You probably have, but if not..)
Show threadJayeLTee3d ago

@adamshostack

Oh, I did, yeah. Their response was so different from everything else I dealt with that I had to give them some positive feedback about it.

Even official bug bounty programs for billion-dollar companies, I have to deal with one message in two months, and it's the company asking me how to connect to their server 

Show threadAdam Shostack  2d ago
@JayeLTee Btw if you have a way to tie this to defcon I’m looking for stories that I can add to the franlklin report. But for that it needs a defcon tie
Show threadClaudio Dekker2d ago
@JayeLTee @GossiTheDog Huge W for modern EA tbh
Show threadsigi7142d ago
@JayeLTee As much as I dislike EA since decades, this is the way to handle it.