Exclusive: Kaspersky Lab is closing its US division and laying off all workers associated with it. The move follows the US Commerce Department's decision last month to ban the sale of Kaspersky software in US starting July 20. https://t.co/018tDqdi77

— Kim Zetter (@KimZetter) July 15, 2024

Reminder: there is a Winamp Skin Museum where you can see 80,000 archived Winamp skins (and use them). There was an era of Y2k hyper-maximalist design, before Apple mandated minimalism in everything. UI design had a lot more room for self-expression. It's art. pic.twitter.com/XZv2PwqhbA

— Maung Thuta (@CypressDahlia) July 14, 2024

New from 404 Media: Inside the Face Fraud Factory. How are some criminals bypassing selfie verification checks? By buying videos of real people turning their heads left and right. Rare insight into a part of fraud: the people who give up their faces https://t.co/3vjw2EOupi

— Joseph Cox (@josephfcox) July 15, 2024

Born to be an italian mobster, forced to be the chairman of the USSR https://t.co/alAX8ZMfSp

— postmaster harper 🟣🥀🔮🏴‍☠️ (@harperposting) July 14, 2024

The amount of superstition involved in prompting LLMs is quite fantastic

That "you are an expert in field X..." trick? Likely a complete waste of time since late 2022 https://t.co/y9kBiApOfq

— Simon Willison (@simonw) July 15, 2024

🚨 Role Prompting doesn't work...

Our team at @learnprompting led a year-long study with co-authors from @OpenAI & @Microsoft, analyzing over 1,500 prompting papers. We narrowed it down to 58 different prompting techniques and we analyzed every one.

Here's what we found...

— Learn Prompting (@learnprompting) July 14, 2024

🚫 Role Prompting was shockingly ineffective. Here's why:

For older models, it seems they could access improved responses/reasoning by being moved by the prompt into a better parameter space. However, newer models are likely already in that improved parameter space.*

— Learn Prompting (@learnprompting) July 14, 2024

*This is a healthy bit of speculation!

This was a big surprise! Back in October 2022, when we released the first-ever guide on Prompting pre-ChatGPT, Role Prompting was all the rage and a core technique we recommended for better ChatGPT results.

— Learn Prompting (@learnprompting) July 14, 2024

*This is a healthy bit of speculation!

This was a big surprise! Back in October 2022, when we released the first-ever guide on Prompting pre-ChatGPT, Role Prompting was all the rage and a core technique we recommended for better ChatGPT results.

— Learn Prompting (@learnprompting) July 14, 2024

GPT4o Captcha Bypass, CLI tool for testing various types of captchas including puzzle, text, complicated text, and reCAPTCHA using Python and Selenium. The tool also uses OpenAI GPT-4 to help solve the captchas. https://t.co/WhjkhZxHvE

— Nicolas Krassas (@Dinosn) July 15, 2024

Large Models of What? Mistaking Engineering Achievements for Human Linguistic Agency https://t.co/5Y8wdIRtEc

New paper with Marek McGann pic.twitter.com/uOVXOYiECs

— Abeba Birhane (@Abebab) July 15, 2024

This is what I mean when I say working with MSRC is degrading. They want everything: write up, stack traces, PoC, exploit source, analysis, life advice, approval on anything you will ever publish. In return they will patch your bug whenever they feel like it and not tell you https://t.co/RpV0FirhGD

— chompie (@chompie1337) July 15, 2024

The process is the punishment.

— JD Work (@HostileSpectrum) July 16, 2024

Another banger from retr0id "Jailbreaking RabbitOS (The Hard Way)".

It's got everything: secureboot bypasses, an Android bootkit, a tethered USB jailbreak over WebSerial, GPL violations, and highly questionable logging practices.

A very fun read !!https://t.co/xRWdAeAOv2 pic.twitter.com/qe2bjgcCEH

— Battle Programmer Yuu (@netspooky) July 16, 2024

We've seen a lot of people discussing the Disney compromise. Let's talk about it.

tl;dr prolly data stealer, not insider threat, leak is real but not going to destroy walt disney

First, the individual(s) who take credit for the compromise allege they had help from an insider.…

— vx-underground (@vxunderground) July 15, 2024

NEW: Most online services (email, social media...) have mechanisms and tools for you to check if your account has been hacked and accessed by someone who shouldn't have.

We wrote a guide on how to do that on Gmail, Outlook, Facebook/Instagram, X, etc. https://t.co/K06I0FhbxN

— Lorenzo Franceschi-Bicchierai (@lorenzofb) July 15, 2024

APKscan: Scan for secrets, endpoints, and other sensitive data in Android files https://t.co/443UiTX693

— Nicolas Krassas (@Dinosn) July 15, 2024

My @reconmtl talk slides "The Art of Malware C2 Scanning - How to Reverse and Emulate Protocol Obfuscated by Compiler" are available online. https://t.co/F6GjGC3LB2

— Takahiro Haruyama (@cci_forensics) July 1, 2024

Reversing and rewriting classic GameSpy game support for classic PvP goodness: https://t.co/ANoocE5eHg

— ringzerø.training && @ringzer0@infosec.exchange (@_ringzer0) July 16, 2024

Hackers leak alleged Taylor Swift tickets, amp up Ticketmaster extortion https://t.co/9MFY3sshwA #cybersecurity #infosec

— Matthias Schulze (@perceptic0n) July 15, 2024

Lurking the r/generator subreddit recently I learned something interesting about the situation in Texas. Quite reasonably a lot of people in the Houston area have decided to get generators installed, since there have been recent major power outages both in summer and winter...

— Pinboard (@Pinboard) July 16, 2024