HackerTrans
TopNewTrendsCommentsPastAskShowJobs

kseniamorph

no profile record

Submissions

Microsoft's AI system tops Anthropic's Mythos on cybersecurity benchmark

geekwire.com
2 points·by kseniamorph·2 maanden geleden·0 comments

CDK before BlackSuit: 90 signals on what $5.8B in acquisition debt looked like

counterpartywatch.substack.com
4 points·by kseniamorph·3 maanden geleden·1 comments

TCS had a perfect security score. Then M&S and JLR were breached

counterpartywatch.substack.com
7 points·by kseniamorph·4 maanden geleden·1 comments

Trump tells government to stop using Anthropic's AI systems

nbcnews.com
13 points·by kseniamorph·5 maanden geleden·4 comments

Ransomware groups switch to stealthy attacks and long-term access

csoonline.com
2 points·by kseniamorph·5 maanden geleden·0 comments

[untitled]

1 points·by kseniamorph·5 maanden geleden·0 comments

comments

kseniamorph
·2 maanden geleden·discuss
don't undervote me....it's a joke
kseniamorph
·2 maanden geleden·discuss
[flagged]
kseniamorph
·2 maanden geleden·discuss
It's worrying because it feels like a loss of control. But there must be control. And this what responsibility is. You should worry only about people who don't understand responsibility, not AI-inspired ones
kseniamorph
·3 maanden geleden·discuss
Co-author here. We collected 90 public signals from employee reviews and social media describing the organizational impact of post-acquisition cost extraction at CDK in the year before the attack. The question we’re interested in is the following: does the PR ownership model inherently increase cyber risk? This is what we see based on the data, but we found little to no research on this topic. Has anyone seen credible academic or industry research on PE or LBO-style ownership as a cyber risk factor specifically? We could only find adjacent work (PE portfolio cyber surveys, PE healthcare studies) and would value pointers to anything we missed.
kseniamorph
·4 maanden geleden·discuss
> nothing but thieves! cool band btw
kseniamorph
·4 maanden geleden·discuss
there is a real one though — https://www.anthropic.com/engineering/claude-code-sandboxing. needs to be enabled with /sandbox, not on by default.
kseniamorph
·4 maanden geleden·discuss
i feel like moves like this make it even harder for new open-source tools to break through. there's already evidence that LLMs are biased toward established tools in their training data (you can check it here https://amplifying.ai/research/claude-code-picks). when a dominant player acquires the most popular toolchain in an ecosystem, that bias only deepens. not because of any skewing, but because the acquired tools get more usage, more documentation, more community content. getting a new project into model weights at meaningful scale is already really hard. acquisitions like this make it even harder.
kseniamorph
·4 maanden geleden·discuss
wow, not bad result on the computer use benchmark for the mini model. for example, Claude Sonnet 4.6 shows 72.5%, almost on par with GPT-5.4 mini (72.1%). but sonnet costs 4x more on input and 3x more on output
kseniamorph
·4 maanden geleden·discuss
given specification approach: personally i found it useful in some cases to write preceding block-comments for functions. you can describe the desired behaviour there, input/output types, etc. you can even make a skeleton from comment blocks and run one-shot generation. but this approach is especially useful in iterative development and maintenance.
kseniamorph
·4 maanden geleden·discuss
i like how this research (and others related) kind of supports the idea that free will might be lacking. I still keep a pinch of skepticism about this idea, understanding that it's just a concept. But personally i like it, because it even fells a bit relieving... not to say that it helps you abandon responsibility, but it makes your stance on life easier, and pushes you not to blame yourself too much for your weaknesses.
kseniamorph
·4 maanden geleden·discuss
I remember reading a CF blog post about crawler separation and responsible AI bot principles where they argue every bot should have one distinct purpose. Now they're building crawling infrastructure themselves, and their own /crawl endpoint lists "training AI systems" as a use case alongside regular crawling. So not only are they in the crawling business now, they're not following the separation principle. To be fair, there's a business logic here. But it's hard not to notice the irony. https://blog.cloudflare.com/uk-google-ai-crawler-policy/
kseniamorph
·4 maanden geleden·discuss
they are seeking talent, not buying the product. this is a valid strategy for devs - just to attract attention no matter what.
kseniamorph
·4 maanden geleden·discuss
Curious whether people here see value in this kind of research: using alternative public data to assess vendor risk before a breach, rather than after. We're aware that "we found signals before a known breach" is a weaker claim than "these signals predicted a breach we didn't know about yet." Is retrospective analysis like this useful to practitioners, or does it only matter if it can be made prospective?
kseniamorph
·4 maanden geleden·discuss
This matches what I've seen too. Though I'd add another dimension: soft skills. In my experience, job searching has always been easier for people who communicate well regardless of their technical level. And soft skills might be what's making some people more resilient to this market shift specifically
kseniamorph
·4 maanden geleden·discuss
Saw the edit: I think that clarification was important. The core point resonates with me personally. The shift isn't about writing less code, it's about where the real judgment lives. Knowing what to build, how to decompose a problem, which patterns to reach for - and critically, when the model is confidently wrong. Without that foundation you're not moving faster, you're just making bad decisions faster. The scope point resonates too. Small, well-defined tasks with verifiable output is where agents actually shine.
kseniamorph
·4 maanden geleden·discuss
makes sense, but i'd separate two things: models converging in ability vs hitting a fundamental ceiling. what we're probably seeing is the current training recipe plateauing — bigger model, more tokens, same optimizer. that would explain the convergence. but that's not necessarily the architecture being maxed out. would be interesting to see what happens when genuinely new approaches get to frontier scale.
kseniamorph
·4 maanden geleden·discuss
Curious about the baseline choice. modded-nanogpt was optimized for wall-clock speed, not data efficiency, so it seems like an unusual reference point for this kind of benchmark. Why not vanilla NanoGPT?
kseniamorph
·4 maanden geleden·discuss
oh it reminds me of all these claims regarding "bad" TV shows, "bad" songs, "bad" movies, etc. i understand that AI gives you a deeper feeling of interaction, but let's be honest - if you have a mental illness anything can be a trigger. that's sad, but it looks like personal responsibility rather than a corporate one
kseniamorph
·4 maanden geleden·discuss
> We heard feedback that GPT‑5.2 Instant would sometimes refuse questions it should be able to answer safely, or respond in ways that feel overly cautious or preachy, particularly around sensitive topics.

Lol it won't solve the issue when ChatGPT treats me like a teenager and tells me to ask my parents about everything (I just don't want to provide my ID to OpenAI to verify my age). Btw that's why I stopped using ChatGPT in my everyday life
kseniamorph
·5 maanden geleden·discuss
Is there anyone who really understands what’s different about the OpenAI agreement? Or maybe these are just Sam Altman’s public statements that don’t actually reflect the real terms of the deal. I honestly can’t figure it out.