HackerLangs
TopNewTrendsCommentsPastAskShowJobs

lschueller

423 karmajoined 8 tahun yang lalu
Cyber security analyst at day, tinkering at night. Pro tomatoes.

Submissions

Project Cybersyn

en.wikipedia.org
2 points·by lschueller·6 jam yang lalu·0 comments

Humanity Protocol Hacked for $36M

twitter.com
2 points·by lschueller·25 hari yang lalu·1 comments

Council of Europe hacked in ShinyHunters' PeopleSoft heist

theregister.com
11 points·by lschueller·25 hari yang lalu·1 comments

Anthropic: Measuring LLMs' impact on N-day exploits

red.anthropic.com
6 points·by lschueller·bulan lalu·0 comments

AI model predicts building fire spread, redirecting evacuees to safer exits

techxplore.com
2 points·by lschueller·bulan lalu·0 comments

SpaceX wins Texas tax breaks for chip project, ahead of record IPO

reuters.com
13 points·by lschueller·bulan lalu·0 comments

Banned Russian Submunitions Found After Mali's Military Announces Airstrikes

bellingcat.com
8 points·by lschueller·bulan lalu·0 comments

Federal audit reveals NIST's NVD is plagued by poor planning and duplication

cyberscoop.com
3 points·by lschueller·bulan lalu·0 comments

The Chatbots and Agents Are Going to Merge

bigtechnology.com
3 points·by lschueller·bulan lalu·0 comments

Europe told to cool its datacenter boom before water and power run short

theregister.com
5 points·by lschueller·bulan lalu·0 comments

Biobased magnetic sensors printed from iron and cellulose

techxplore.com
3 points·by lschueller·bulan lalu·0 comments

UK spy chief labels AI 'unstoppable force' with off., def. ramifications

cyberscoop.com
4 points·by lschueller·bulan lalu·0 comments

Charter Communications confirms data breach of apparently 40M records

techradar.com
4 points·by lschueller·bulan lalu·0 comments

Malware dev tries to steal Claude users' secrets, leaks own GitHub private token

theins.press
7 points·by lschueller·bulan lalu·4 comments

Perfect randomness realized for the first time

phys.org
4 points·by lschueller·bulan lalu·0 comments

AI hiring algorithms reject Black, Asian job seekers at higher rates

theregister.com
6 points·by lschueller·bulan lalu·1 comments

[untitled]

1 points·by lschueller·2 bulan yang lalu·0 comments

Altered photos of Biden, Trump with Xi spread online

factcheck.afp.com
3 points·by lschueller·2 bulan yang lalu·0 comments

Jailbroken Gemini helped Russian-speaking fraudster target MAGA crypto users

theregister.com
6 points·by lschueller·2 bulan yang lalu·0 comments

The quantum realm, the cosmological realm, and the multiverse, in 69 minutes

bigthink.com
4 points·by lschueller·2 bulan yang lalu·0 comments

comments

lschueller
·kemarin dulu·discuss
Yes, but this is the perfect circle of slop: generate an ai landing page, throw it into cloudflare drop, ai adopts it, start all over again. For genuine, professional content, I would assume, almost no one uses cloudflare drop, as they already have something in place to test and quickly host some page. Moreover, I expect that scammers and phishing campaigns will have a use for it to quickly up some landing page without leaving a large footprint.
lschueller
·kemarin dulu·discuss
I agree. This is nothing new. And I would even state, that this applies to every sort of idea. Not only coding projects. AI makes an idea life cycle only a bit faster in some cases.
lschueller
·9 hari yang lalu·discuss
The idea is cool. But the mobile view is slightly off. Mapping of ttp would be nice though.
lschueller
·11 hari yang lalu·discuss
This includes titles like "End of Watch" and "The Shameless"
lschueller
·11 hari yang lalu·discuss
There are established ways / protocols to hold and provide cryptographically valid proof of a verification process, without any need to keep the actual id images in any storage. And to my knowledge there is no requirement for compliant KYC (Know your customer) to provide their ID as a proof as long as the verification process itself is compliant and audited in accordance to certain criteria.

You can compare this in a certain way to file hashes. A successful verification with a predefined minimum level of credibility can be encrypted to a special string for later being used, if a service needs to verify the person again. It doesn't matter then, that the original passport images or video ident has been deleted the second after id verification has been completed.
lschueller
·16 hari yang lalu·discuss
Oh, and what I think is missing, are the fees for the mandatory membership in the industry and trade chamber (IHK) and of course the Berufsgenossenschaft. Especially the IHK is one of a kind... They are absolutely useless and a big bloated mess of self-governance, chaotic and really badly organized internally, but great at billing. When I've dealt with an attempt of fraud couple of years ago, I called them and asked if they have some kind of blacklists, guidelines or someone there, who could help in the case you get an business inquiry you suspect of being fraudulent. Thought, when i pay a yearly fee to them, maybe they have some experience with similar cases from other companies, who might reported attempta of fraud or fraudulent billing. Basically, one perso told me, they don't have a legal department, then I called the legal department directly, they forwarded me to the particular office, who again told me, he never heard of fraud attempts and he doesn't know if there is someone.. And this was the IHK in Hamburg. One of the largest chambers. Absolute joke.
lschueller
·16 hari yang lalu·discuss
Luckily, it seems you do not plan to import physical goods... This would be a next round of applications, fees, registers and id numbers. There are several countries out there, offering to set up a company legally and in accordance to european legislation within a couple days.

The fees you paid, seem quite high tbh. In particular for notary and court reg. I have the impression that the rates in Berlin are quiet above average.
lschueller
·16 hari yang lalu·discuss
It's not too hard to find vulnerabilities like this out there, but it is a true pleasure to see how well described and at the same time well documented the vulnerabilities and disclosure process in this case are handled. This makes it particularly useful to learn from as a real-life example. Well written, thank you for this cool piece of security work.
lschueller
·17 hari yang lalu·discuss
Ah, now it's more obvious.. True! Thank you
lschueller
·17 hari yang lalu·discuss
Mainly Meta Services, which seem to spike, isn't it? And Google Fiber
lschueller
·19 hari yang lalu·discuss
Oh yes! This would fit in. "Please verify with Persona" will be the next level.
lschueller
·19 hari yang lalu·discuss
In the big picture I am again and again fascinated by this. One of the oldest commercial services out there (post / shipping) proves repeatedly to be very innovative and strong in realization of new stuff like this. They were the first or one of the first, who deployed electrical cargo vans. https://de.wikipedia.org/wiki/Streetscooter

To be accurate, they bought the startup. But still: they didn't wait for the automotive company to come up with a e cargo van.
lschueller
·19 hari yang lalu·discuss
> Create a free account to keep playing. Sign up or log in to create an account, save your progress, and continue this difficulty.

And here we are again. A nice idea, ai generated, for grabbing email addresses... Not even trying to give it a human touch. Is this the new spam? Hundreds of sites and web apps forcing you to sign up with a temp email address for no good reason?
lschueller
·25 hari yang lalu·discuss
Thank you for sharing this statement. In other words, we now experience the secondary costs of the AI boom (and supply chain pressure). It won't get cheaper. I fully understand the decision of Hetzner. And even though I like low prices, the prices are still fair imo.
lschueller
·25 hari yang lalu·discuss
The incident report, incl. the (rough) attack paths, can be found here: https://humanityprotocol.notion.site/H-Token-Incident-Update...
lschueller
·27 hari yang lalu·discuss
Thank you for the link.

Yes, they are real. And quite active. Some unverified source threw around the number of >1000 victims in 2026 alone. I think it was ransomware.live. At least a couple of hundred can be counted as victims with more or less certainty. The affiliates business is very very active currently.. as Brian Krebs summarized in a couple of blog posts already.

Feels like almost everyone with some it background in russia tries to jump on one of the raas as an affiliate at the moment. More and more new faces are entering the stage right now.
lschueller
·28 hari yang lalu·discuss
Inflated use of the term zero-day, while none of the described vulnerabilities is actually a zero-day. But it sounds and clicks good.. thank you for the PoC.
lschueller
·bulan lalu·discuss
Please do not confuse funding with traction. These things are not related necessarily. In best case, a funded team gets traction and will be able to perform in a profitable relation to that funding. Your angle should be building a small but steady user base and build on that. While others are competing against time and expectations, you compete against visbility and trust. Your competitors aren't your competition you should care about. It should be, how to communicate to the users more effectively.
lschueller
·bulan lalu·discuss
You need a chrystal clear usp. The site looks like it is for everybody, it is for everything, all at once and without any specialty compared to the thousands of other ai websites and service. The generic questions always are, who should use it and why.. That needa to be answered within the first 3 seconds. E.g. Animation Artists use it for getting from idea to clip in 5 minutes instead of 5 hours...
lschueller
·bulan lalu·discuss
https://archive.ph/N7G4v