I posted a comment on the announcement when it was posted here: >As someone who is working in incident response and malware analysis I have to say that is one of the worst ideas I have ever seen. A lot of companies have…
As someone who is working in incident response and malware analysis I have to say that is one of the worst ideas I have ever seen. A lot of companies have issues with ClickFix [1] and other social engineering campaigns…
From my experience OpenAI has become very sensitive when it comes to using their tools for security research. I am using MCP servers for tools like IDA Pro or Ghidra (for malware analysis) and recently received a…
I’m not saying that this is related to Wikipedia ditching archive.is but timing in combination with Russian messages is at least…weird.
From the conclusion > Importantly, this work also highlights the defensive implications of such techniques. While Secure Boot and firmware integrity mechanisms would prevent this attack chain when correctly enforced,…
maybe it's a mix of both :)
You can define the tools that agents are allowed to use in the opencode.json (also works for MCP tools I think). Here’s my config: https://pastebin.com/PkaYAfsn The models can call each other if you reference them using…
Nope it isn’t. I did it as a joke initially (I also had a version where every 2 stories there was a meeting and if a someone underperformed it would get fired). I think there are multiple reasons why it actually works…
I am still torn on this issue. On the one hand, it feels like a copyright violation when other people's works are used to train an ML model. On the other hand, it is not a copyright infringement if I paint a picture in…
I never doubted that it's possible but it's way harder than identifying bank accounts. There is a massive business behind crypto tracking, that's why companies like MasterCard have acquired CipherTrace. Some years ago…
You can easily establish the connection from a bank account to a person. A connection from a crypto wallet to a person is extremely difficult. Money laundering with crypto is also much easier (and cheaper usually).
> The threat actor appears to have obtained this information by paying multiple contractors or employees working in support roles outside the United States to collect information from internal Coinbase systems to which…
This "thing" is always spawning 3 processes at the time. The processes are always the ones from the virustotal link. I can upload the DLL to a file sharing service of your choice if you don't have a VT premium license.…
I don't understand why the software is built how it's built. Why would you want to implement licensing in the future for a software product that only creates fake processes and registry keys from a list:…
You guys are getting paid?
Use Bitwarden instead. fixed. https://bitwarden.com/
Because the 99$/year are for the dev platform and the 15%/30% cut are for using the infrastructure needed for in app purchases.
Well... That's the same amount of money you have to give to Google, Microsoft and Amazon if you want to use their services. Google and Apple both take 15% if you make less than 1.000.000$/year. Again - As a user I also…
Honestly as a user I will avoid any app that is trying to offer me a purchase outside the App Store. Users mostly don't care about the issues between the developers and Apple and at least I am willing to pay more for my…
I think the problem with emojis is that everyone has the same options to pick from - if you have stickers you can express yourself in a way that fits more your own style(?)
Your app feels really clean! I like the dropping buttons when you want to delete a sticker and the sticker effect when you view a sticker and you pull it up or down. iCloud Sync also works like a charm! Hope you manage…
I notice that you have no one in your circle of acquaintances who has illegally downloaded movies about torrents and got caught. I don't know how it is in other countries, but here in Germany friendly people ring your…
There is a bug when it's finished and you instantly scroll down and press the button again that it then won't play the arrive sound if it arrives.
I posted a comment on the announcement when it was posted here: >As someone who is working in incident response and malware analysis I have to say that is one of the worst ideas I have ever seen. A lot of companies have…
As someone who is working in incident response and malware analysis I have to say that is one of the worst ideas I have ever seen. A lot of companies have issues with ClickFix [1] and other social engineering campaigns…
From my experience OpenAI has become very sensitive when it comes to using their tools for security research. I am using MCP servers for tools like IDA Pro or Ghidra (for malware analysis) and recently received a…
I’m not saying that this is related to Wikipedia ditching archive.is but timing in combination with Russian messages is at least…weird.
From the conclusion > Importantly, this work also highlights the defensive implications of such techniques. While Secure Boot and firmware integrity mechanisms would prevent this attack chain when correctly enforced,…
maybe it's a mix of both :)
You can define the tools that agents are allowed to use in the opencode.json (also works for MCP tools I think). Here’s my config: https://pastebin.com/PkaYAfsn The models can call each other if you reference them using…
Nope it isn’t. I did it as a joke initially (I also had a version where every 2 stories there was a meeting and if a someone underperformed it would get fired). I think there are multiple reasons why it actually works…
I am still torn on this issue. On the one hand, it feels like a copyright violation when other people's works are used to train an ML model. On the other hand, it is not a copyright infringement if I paint a picture in…
I never doubted that it's possible but it's way harder than identifying bank accounts. There is a massive business behind crypto tracking, that's why companies like MasterCard have acquired CipherTrace. Some years ago…
You can easily establish the connection from a bank account to a person. A connection from a crypto wallet to a person is extremely difficult. Money laundering with crypto is also much easier (and cheaper usually).
> The threat actor appears to have obtained this information by paying multiple contractors or employees working in support roles outside the United States to collect information from internal Coinbase systems to which…
This "thing" is always spawning 3 processes at the time. The processes are always the ones from the virustotal link. I can upload the DLL to a file sharing service of your choice if you don't have a VT premium license.…
I don't understand why the software is built how it's built. Why would you want to implement licensing in the future for a software product that only creates fake processes and registry keys from a list:…
You guys are getting paid?
Use Bitwarden instead. fixed. https://bitwarden.com/
Because the 99$/year are for the dev platform and the 15%/30% cut are for using the infrastructure needed for in app purchases.
Well... That's the same amount of money you have to give to Google, Microsoft and Amazon if you want to use their services. Google and Apple both take 15% if you make less than 1.000.000$/year. Again - As a user I also…
Honestly as a user I will avoid any app that is trying to offer me a purchase outside the App Store. Users mostly don't care about the issues between the developers and Apple and at least I am willing to pay more for my…
I think the problem with emojis is that everyone has the same options to pick from - if you have stickers you can express yourself in a way that fits more your own style(?)
Your app feels really clean! I like the dropping buttons when you want to delete a sticker and the sticker effect when you view a sticker and you pull it up or down. iCloud Sync also works like a charm! Hope you manage…
I notice that you have no one in your circle of acquaintances who has illegally downloaded movies about torrents and got caught. I don't know how it is in other countries, but here in Germany friendly people ring your…
There is a bug when it's finished and you instantly scroll down and press the button again that it then won't play the arrive sound if it arrives.