HackerTrans
TopNewTrendsCommentsPastAskShowJobs

kseniamorph

no profile record

Submissions

Microsoft's AI system tops Anthropic's Mythos on cybersecurity benchmark

geekwire.com
2 points·by kseniamorph·2 tháng trước·0 comments

CDK before BlackSuit: 90 signals on what $5.8B in acquisition debt looked like

counterpartywatch.substack.com
4 points·by kseniamorph·3 tháng trước·1 comments

TCS had a perfect security score. Then M&S and JLR were breached

counterpartywatch.substack.com
7 points·by kseniamorph·4 tháng trước·1 comments

Trump tells government to stop using Anthropic's AI systems

nbcnews.com
13 points·by kseniamorph·5 tháng trước·4 comments

Ransomware groups switch to stealthy attacks and long-term access

csoonline.com
2 points·by kseniamorph·5 tháng trước·0 comments

[untitled]

1 points·by kseniamorph·5 tháng trước·0 comments

comments

kseniamorph
·2 tháng trước·discuss
don't undervote me....it's a joke
kseniamorph
·2 tháng trước·discuss
[flagged]
kseniamorph
·2 tháng trước·discuss
It's worrying because it feels like a loss of control. But there must be control. And this what responsibility is. You should worry only about people who don't understand responsibility, not AI-inspired ones
kseniamorph
·3 tháng trước·discuss
Co-author here. We collected 90 public signals from employee reviews and social media describing the organizational impact of post-acquisition cost extraction at CDK in the year before the attack. The question we’re interested in is the following: does the PR ownership model inherently increase cyber risk? This is what we see based on the data, but we found little to no research on this topic. Has anyone seen credible academic or industry research on PE or LBO-style ownership as a cyber risk factor specifically? We could only find adjacent work (PE portfolio cyber surveys, PE healthcare studies) and would value pointers to anything we missed.
kseniamorph
·4 tháng trước·discuss
> nothing but thieves! cool band btw
kseniamorph
·4 tháng trước·discuss
there is a real one though — https://www.anthropic.com/engineering/claude-code-sandboxing. needs to be enabled with /sandbox, not on by default.
kseniamorph
·4 tháng trước·discuss
i feel like moves like this make it even harder for new open-source tools to break through. there's already evidence that LLMs are biased toward established tools in their training data (you can check it here https://amplifying.ai/research/claude-code-picks). when a dominant player acquires the most popular toolchain in an ecosystem, that bias only deepens. not because of any skewing, but because the acquired tools get more usage, more documentation, more community content. getting a new project into model weights at meaningful scale is already really hard. acquisitions like this make it even harder.
kseniamorph
·4 tháng trước·discuss
wow, not bad result on the computer use benchmark for the mini model. for example, Claude Sonnet 4.6 shows 72.5%, almost on par with GPT-5.4 mini (72.1%). but sonnet costs 4x more on input and 3x more on output
kseniamorph
·4 tháng trước·discuss
given specification approach: personally i found it useful in some cases to write preceding block-comments for functions. you can describe the desired behaviour there, input/output types, etc. you can even make a skeleton from comment blocks and run one-shot generation. but this approach is especially useful in iterative development and maintenance.
kseniamorph
·4 tháng trước·discuss
i like how this research (and others related) kind of supports the idea that free will might be lacking. I still keep a pinch of skepticism about this idea, understanding that it's just a concept. But personally i like it, because it even fells a bit relieving... not to say that it helps you abandon responsibility, but it makes your stance on life easier, and pushes you not to blame yourself too much for your weaknesses.
kseniamorph
·4 tháng trước·discuss
I remember reading a CF blog post about crawler separation and responsible AI bot principles where they argue every bot should have one distinct purpose. Now they're building crawling infrastructure themselves, and their own /crawl endpoint lists "training AI systems" as a use case alongside regular crawling. So not only are they in the crawling business now, they're not following the separation principle. To be fair, there's a business logic here. But it's hard not to notice the irony. https://blog.cloudflare.com/uk-google-ai-crawler-policy/
kseniamorph
·4 tháng trước·discuss
they are seeking talent, not buying the product. this is a valid strategy for devs - just to attract attention no matter what.
kseniamorph
·4 tháng trước·discuss
Curious whether people here see value in this kind of research: using alternative public data to assess vendor risk before a breach, rather than after. We're aware that "we found signals before a known breach" is a weaker claim than "these signals predicted a breach we didn't know about yet." Is retrospective analysis like this useful to practitioners, or does it only matter if it can be made prospective?
kseniamorph
·4 tháng trước·discuss
This matches what I've seen too. Though I'd add another dimension: soft skills. In my experience, job searching has always been easier for people who communicate well regardless of their technical level. And soft skills might be what's making some people more resilient to this market shift specifically
kseniamorph
·4 tháng trước·discuss
Saw the edit: I think that clarification was important. The core point resonates with me personally. The shift isn't about writing less code, it's about where the real judgment lives. Knowing what to build, how to decompose a problem, which patterns to reach for - and critically, when the model is confidently wrong. Without that foundation you're not moving faster, you're just making bad decisions faster. The scope point resonates too. Small, well-defined tasks with verifiable output is where agents actually shine.
kseniamorph
·4 tháng trước·discuss
makes sense, but i'd separate two things: models converging in ability vs hitting a fundamental ceiling. what we're probably seeing is the current training recipe plateauing — bigger model, more tokens, same optimizer. that would explain the convergence. but that's not necessarily the architecture being maxed out. would be interesting to see what happens when genuinely new approaches get to frontier scale.
kseniamorph
·4 tháng trước·discuss
Curious about the baseline choice. modded-nanogpt was optimized for wall-clock speed, not data efficiency, so it seems like an unusual reference point for this kind of benchmark. Why not vanilla NanoGPT?
kseniamorph
·4 tháng trước·discuss
oh it reminds me of all these claims regarding "bad" TV shows, "bad" songs, "bad" movies, etc. i understand that AI gives you a deeper feeling of interaction, but let's be honest - if you have a mental illness anything can be a trigger. that's sad, but it looks like personal responsibility rather than a corporate one
kseniamorph
·4 tháng trước·discuss
> We heard feedback that GPT‑5.2 Instant would sometimes refuse questions it should be able to answer safely, or respond in ways that feel overly cautious or preachy, particularly around sensitive topics.

Lol it won't solve the issue when ChatGPT treats me like a teenager and tells me to ask my parents about everything (I just don't want to provide my ID to OpenAI to verify my age). Btw that's why I stopped using ChatGPT in my everyday life
kseniamorph
·5 tháng trước·discuss
Is there anyone who really understands what’s different about the OpenAI agreement? Or maybe these are just Sam Altman’s public statements that don’t actually reflect the real terms of the deal. I honestly can’t figure it out.