May 19, 2023
May 19, 2023
@PoorlyAgedStuff pic.twitter.com/Isby940xmL
— Aric Toler (@AricToler) May 18, 2023
Today, the #Dutch Ministry of Foreign Affairs published an evaluation report of its contribution to the Resolute Support mission in #Afghanistan that pulls no punches.
— Dr. Jonathan Schroden (@JJSchroden) May 18, 2023
I'll string together its primary findings in this THREAD. 1/n pic.twitter.com/qLUcC0xp3S
A NYT article on the debate around whether LLM base models should be closed or open.
— Yann LeCun (@ylecun) May 18, 2023
Meta argues for openness, starting with the release of LLaMA (for non-commercial use), while OpenAI and Google want to keep things closed and proprietary.
They argue that openness can be…
I wrote a blog post about “Having fun with seccomp profiles on the edge”https://t.co/LdxNJh53vP
— Sascha Grunert (@saschagrunert) May 18, 2023
An article how to record and replay seccomp profiles for Kubernetes, but without requiring Kubernetes at all! 😱
sir, the americans have discovered 27 kinds of deterrence. we cannot allow a deterrence gap https://t.co/DQZufQKFwA pic.twitter.com/52zGputoiz
— Seva (@SevaUT) May 18, 2023
I don't get it. Training a LLM on "trusted" data doesn't make its output more trustable.
— Alex Lebrun (@lxbrun) May 17, 2023
You can make a LLM-based app safer by working at the application level, or with an adversarial model approach -- I don't see how one can make an LLM safer per se. https://t.co/6CWKsVMwuj
It’s going to be interesting to see how LLMs get deployed inside China, since it’s so easy to prompt (even heavily censored, fine-tuned) LLMs into producing some text that offends the CCP / Govt and cross the “red lines” in the country.
— hardmaru (@hardmaru) May 18, 2023
Source: r/HongKonghttps://t.co/V2ffk0BqkF
John Barrymore's stunt double Paul Malvern gets launched in the air by a catapult in The Beloved Rogue (1927) pic.twitter.com/ucZy4uIOgN
— Silent Movie GIFs (@silentmoviegifs) May 17, 2023
Here's a great clip of Paul Malvern talking about the catapult stunt, and how close he came to being seriously hurt or killed. From the documentary series Hollywood: A Celebration of the American Silent Film (1980) pic.twitter.com/KTKgzhUFpd
— Silent Movie GIFs (@silentmoviegifs) May 17, 2023
In a bit of silent-era ingenuity, the shot where it looks like Paul Malvern was flying over the rooftops was filmed by turning the camera on its side while he dived into a net pic.twitter.com/97MVx73XPw
— Silent Movie GIFs (@silentmoviegifs) May 18, 2023
You can hear the programme, featuring @rorycormac and @ENortonHistory here https://t.co/rt8b31stvg
— Jonathan Freedland (@Freedland) May 16, 2023
Here are the slides for our talk, 'Find and exploit race condition bugs in modern JS engines' at #Zer0Con2023. Thanks @POC_Crew for a great conference!https://t.co/yyRJtGHjDm
— Polaris Feng (@FengPolaris) May 17, 2023
The EU Council is continuing to debate a law that would require communication providers to scan all communications, potentially including end-to-end encrypted conversations. And they are now debating including audio conversations as well.
— Matthew Green (@matthew_d_green) May 17, 2023
Spycraft the great game
https://www.filfre.net/2023/03/spycraft-the-great-game-part-1-or-parallel-spies/Google will phase out third-party cookies for a testing group of 1% users at the beginning of 2024. Full deprecation of third party cookies in Q4 of 2024. The entire ecosystem is shifting. https://t.co/oiZ910BjzP https://t.co/5dYd3j1Ljp pic.twitter.com/l5I4oWR8L8
— Lukasz Olejnik, Ph.D, LL.M (@lukOlejnik) May 18, 2023
US Supreme Court rules against Andy Warhol
This sucks. It reduces fair use protections. Andy Warhol made a dick move. Vanity Fair paid for a single use license to a portrait of Prince for Warhol to modify as an illustration for an article. Warhol did the piece, and then without asking the photographer or getting another license, he made copies of his new work and sold them. It’s a dick move, but the Warhol piece is transformative.
Except now, because the original picture was licensed to illustrate an article, and Warhol modified it to then be used in the article, the court decided that it wasn’t fair use because his version replaced the “original” for the article. And so when he sold his version afterwards, he wasn’t protected by fair use.
Now there are more tests for whether something is fair use. Fucking annoying to have more stringent copyright restrictions.
Supreme Court Rules Andy Warhol's Prince Art is Copyright Infringement | PetaPixel
Photographers Win!
Landmark crypto rules make exchanges liable for customer losses in EU | Ars Technica
Sweeping regulations require licenses for all crypto providers.
Head of Dutch satellite technology firm arrested for spying - DutchNews.nl
A Greek national who headed Brabant-based satellite technology firm Aratos has been arrested in Paris and charged with spying for Russia, according to FBI documents. The man, Nikos Bogonikolos, was arrested on May 9 and remains in custody pending extradition proceedings, the FBI said. Bogonikolos is the founder of the Greek conglomerate Aratos Group, a collection of defense and technology companies in the Netherlands and Greece. “As alleged, while ostensibly operating as a defense contractor for Nato and other ally countries,...
Taking over https://t.co/8iTZAzeBkQ accounts by abusing OAuth 2.0https://t.co/g3wRGeTDR5
— Yaniv Balmas (@ynvb) March 2, 2023
Read the technical details here:https://t.co/u1AJcTtlfH?
I really liked this moment when @AdiPolak and I discussed the reality of #ML and #DataScience. As trendy as it is, there's plenty of hard graft too. 😅
— Kris Jenkins (@krisajenkins@mastodon.social) (@krisajenkins) May 18, 2023
See the full interview here: https://t.co/7tFj80Nt7J pic.twitter.com/GRnZRKPWA5
Timely piece here by @Lingling_Wei on internal clampdown by Chinese security services on foreign businesses and cascading effects on capital flows.
— Chris Krebs (@C_C_Krebs) May 19, 2023
A few thoughts (w/ a h/t to @KrebsStamos China expert @DakotaInDC for shaping the 🧵). https://t.co/aXlh6jskko
Every org with ops in China should be (1) gaming out how an office raid would impact operations there and globally; (2) accelerate “China For China” network segmentation efforts; (3) diversify supply chains (“China Plus”) to de-risk/reduce organizational dependence on CN,
— Chris Krebs (@C_C_Krebs) May 19, 2023
Apple's new security release states that's the rapid security response from a few weeks ago patched 3 Safari itw 0-days: CVE-2023-32409, CVE-2023-28204, CVE-2023-32373. CVE-2023-32409 was reported by @_clem1 and @DonnchaC https://t.co/eDkfPJ4XSF pic.twitter.com/9Q4QMglbF6
— Maddie Stone (@maddiestone) May 19, 2023
Well.. it looks funky but I think it's cause I didn't properly extract all the zip contents for the language pack or skin file it came with. Nonetheless.. Gh0st RAT looks like it came from 1990. I kinda dig. pic.twitter.com/bRWhUmUX9q
— Voidwalker (@JustWantToQ1) May 17, 2023
Needs moar AI but hey, it's a start. pic.twitter.com/09FP0BjPnT
— Daniel Cuthbert (@dcuthbert) May 19, 2023
👉 Let ChatGPT visit a website and have your email stolen.
— Johann Rehberger (@wunderwuzzi23) May 19, 2023
Plugins, Prompt Injection and Cross Plug-in Request Forgery.
Not sharing “shell code” but… 🤯
Why no human in the loop? @openai Would mitigate the CPRF at least#OPENAI #ChatGPT #plugins #infosec #ai #humanintheloop pic.twitter.com/w3xtpyexn3
If you grant social network apps access to “All Photos” ⚠️ … they can listen to the spoken Audio 💬 in your Live Photos! 🔊
— Ben Guild (@benguild) May 17, 2023
… My friend was just chatting to me about how this is one way ad targeting software can “listen” 🔮 without showing the Mic indicator on your phone. 😱 pic.twitter.com/ldgz9a59HS
not what i was expecting but fair enough pic.twitter.com/E6nqisxlpw
— h (@ipodmacbook) May 18, 2023
Another surprising election result in Southeast Asia is attributed to TikTok, where winners claim 'organic election campaigners' but opponents decry as 'information operations'.
— Ross Tapsell (@RossTapsell) May 19, 2023
Although this time it's a win for progressives. https://t.co/j9ittiBenv