- Unfortunately majority of media outlets are parroting these #cyberslop claims unchallenged. The report by Anthropic makes some fantastical claims and conclusions based on those claims. In the end while the threats are there, they’re mostly unrelated to AI or LLM use. Pouring more money into AI companies isn't a magic solution. There's better use for this budget: Invest it in doing what you have been doing all along - Maintain good visibility and understanding of your environments and associated software solutions, patch your systems in a timely manner, perform periodic security assessments (internal or external), detect and respond to threats. AI or LLM are not magic and can't exploit vulnerabilities that are not there.

Harry Sintonen 2 months ago

This is a reminder to everyone that security is more than just memory safety.

sudo-rs Affected By Multiple Security Vulnerabilities - Impacting Ubuntu 25.10 - Phoronix

The Ubuntu 25.10 transition to using some Rust system utilities continues proving quite rocky

#rust #vulnerability #sudo_rs

Harry Sintonen 2 months ago

If you have ever wondered why #Facebook seems either to ignore or fail to remove obvious scammers when you report them - well, there's a reason for it: They make a huge profit for Facebook. If you believe Facebook has now stopped or will in future stop this practice now that they've been exposed, you're way too trusting.

Ars Technica

Bombshell report exposes how Meta relied on scam ad profits to fund AI

Meta goosed its revenue by targeting users likely to click on scam ads, docs show.

"Bombshell report exposes how Meta relied on scam ad profits to fund AI" #scams #fraud #scammers

Harry Sintonen 2 months ago

Humans make mistakes all the time, yet nuclear power is extremely safe. A wide range of precautions and protocols are in place to ensure nuclear safety, starting from the work culture. This interesting video by Smarter Every Day shows the refueling process of a nuclear reactor: While seeing insides of a nuclear reactors and how they're refueled is interesting, I find the safety&security processes and practices around the process even more interesting. This video gives you some idea why nuclear power-related accidents are so rare. People do make mistakes, but the overlapping and multilayered safety&security processes catch the mistakes before they can lead to bigger problems. There are things to learn here for even the world outside of the nuclear industry: - Having a work culture that encourages reporting mistakes without reprisal and reprimand helps catch issues early, as they are more likely to be reported. - Identifying the critical systems and having layered safety&security is important. Not everything needs to be super tight. Applying the super tight rules everywhere would likely just make people ignore the rules, at least in part. - Training is important. Understanding the reason why tight safety/security is in place in a system is crucial. With this understanding, it is more likely that the rules are obeyed. #security #safety #nuclearsafety #nuclearpower