"AI is giving attackers a huge advantage!"
-
@FuturisticRobert @krypt3ia @Viss
...and I'll look down and whisper 'No.'@cR0w @FuturisticRobert @Viss Exactly
-
@cR0w
It briefly amazed me, now it just dismays me. I work for the government. Almost all our management and about half the devs are all-in for AI. I'm older and more sceptical. I've seen a few silver bullets fly by in the past, and I don't have much desire to rearrange my job to prompting, reviewing, and hoping the AI code turns out okay. I should be able to hold out until retirement, but younger folks don't have that luxury.Yeah and we're gonna "retire" as they crash the markets and decide all the social security we've paid is theirs not ours
-
@FuturisticRobert @krypt3ia @Viss
...and I'll look down and whisper 'No.'@cR0w @FuturisticRobert @krypt3ia samesies, except nobody knows where the fuck i am and they never find me, and i spend my days cruising around the forest with a gnarly macro insect camera setup taking pictures of bugs and doing light maintenance on my zero carbon natural gas, water, solar/wind and sodium battery setups
-
@FuturisticRobert @cR0w @krypt3ia @Viss no shit. My hourly rate starts at 400 an hour, minimum of 4 hours.
-
@cR0w @FuturisticRobert @krypt3ia samesies, except nobody knows where the fuck i am and they never find me, and i spend my days cruising around the forest with a gnarly macro insect camera setup taking pictures of bugs and doing light maintenance on my zero carbon natural gas, water, solar/wind and sodium battery setups
@Viss @FuturisticRobert @krypt3ia The dream.
-
@cR0w Also trust! I remember when certain small companies used to set themselves apart and build a lot of goodwill by having humans create things for the community.. now it's all slop all the time coming from their social accounts
@iagox86 @cR0w I used to love writing short blog posts for my company. Nothing earth shattering, but just interesting enough that it kept our name circulating and maybe, just maybe, helped out a few people interested in the same problems.
Then we got bought, and the blog was all shaped by marketing from then on. (same at the company after, as great as it was in other ways). Community engagement became just plain engagement.
Find me another small company of nerds who just want to help out others, and share bits of what they've learned for the community, and I'll be happy.
-
@cR0w @FuturisticRobert @krypt3ia samesies, except nobody knows where the fuck i am and they never find me, and i spend my days cruising around the forest with a gnarly macro insect camera setup taking pictures of bugs and doing light maintenance on my zero carbon natural gas, water, solar/wind and sodium battery setups
-
@iagox86 @cR0w I used to love writing short blog posts for my company. Nothing earth shattering, but just interesting enough that it kept our name circulating and maybe, just maybe, helped out a few people interested in the same problems.
Then we got bought, and the blog was all shaped by marketing from then on. (same at the company after, as great as it was in other ways). Community engagement became just plain engagement.
Find me another small company of nerds who just want to help out others, and share bits of what they've learned for the community, and I'll be happy.
@darthnull @iagox86 Seems to be the way most of the current orgs that claim community involvement are already heading too.
-
@Viss @FuturisticRobert @krypt3ia The dream.
@cR0w @Viss @FuturisticRobert Unfortunately, I suspect all of us will be trying to just survive in some post apocalyptic hellscape.
-
@cR0w @Viss @FuturisticRobert Unfortunately, I suspect all of us will be trying to just survive in some post apocalyptic hellscape.
-
@cR0w @Viss @FuturisticRobert Unfortunately, I suspect all of us will be trying to just survive in some post apocalyptic hellscape.
@krypt3ia @Viss @FuturisticRobert Realistically, that's where I'm at too. But there's too much planning and luck for that so I'm doing what I can and accepting the rest of the risk. Like another Cascadia earthquake.
-
@darthnull @iagox86 Seems to be the way most of the current orgs that claim community involvement are already heading too.
@cR0w @darthnull Then labs/research makes their own blog, then that ALSO gets filled with AI slop because more quantity = better right?
I'm gonna start embedding one of those "email me for a $100 gift card" into every slop post to prove that nobody reads them
-
@cR0w @darthnull Then labs/research makes their own blog, then that ALSO gets filled with AI slop because more quantity = better right?
I'm gonna start embedding one of those "email me for a $100 gift card" into every slop post to prove that nobody reads them
@iagox86 @cR0w @darthnull If I had a dollar for every time I was looking up PoC/exploits for a given CVE, and its some slop report from a website that just seems to scrape cve.org and regurgitate it along with very generic remediation recommendations, I probably wouldn't be rich, but like, I could have a fairly nice lunch.
-
@iagox86 @cR0w @darthnull If I had a dollar for every time I was looking up PoC/exploits for a given CVE, and its some slop report from a website that just seems to scrape cve.org and regurgitate it along with very generic remediation recommendations, I probably wouldn't be rich, but like, I could have a fairly nice lunch.
@da_667 @cR0w @darthnull omg, it's the worst.
The WORST part is that I've found that an LLM is the best way to deal with that shit.. it's way better at filtering results down to just useful PoCs (having to use AI to fight AI makes me incredibly sad though
) -
"AI is giving attackers a huge advantage!"
"Yes, it is. It's amazing how quickly it has destroyed dev, sec, ops, management, company missions and priorities, regulations, information literacy, and civil society, making everyone more vulnerable."
People, not the machines, have chosen to destroy these things by pretending that LLMs are the AGI they were hungry for, and told they were getting, and investing accordingly despite all evidence to the contrary.
-
@da_667 @cR0w @darthnull omg, it's the worst.
The WORST part is that I've found that an LLM is the best way to deal with that shit.. it's way better at filtering results down to just useful PoCs (having to use AI to fight AI makes me incredibly sad though
)@iagox86 @cR0w @darthnull what's incredibly fun is looking at nuclei-templates repo, thinking you've found something that can serve as a proof of concept for some thing you really needed, and its a GET request that they parse with regex for version strings.
Thanks for that, I guess.
-
@FuturisticRobert @krypt3ia @cR0w my hottub runs off the powerwall. when the grid goes down that party's ay my place. bring swimtrunks and something for the smoker
-
@FuturisticRobert @cR0w @krypt3ia yup. need big long term stuff to go behind the high discharge lipos. also need to see how many zinc and copper poles are needed to get 12v at any reasonable amperage out of an earth battery
-
"AI is giving attackers a huge advantage!"
"Yes, it is. It's amazing how quickly it has destroyed dev, sec, ops, management, company missions and priorities, regulations, information literacy, and civil society, making everyone more vulnerable."
@cR0w AI is giving its user an advantage and that only shows how human nature is destructive in general. It's still time to apply it to better means. What are YOU doing?
-
@FuturisticRobert @krypt3ia @cR0w my hottub runs off the powerwall. when the grid goes down that party's ay my place. bring swimtrunks and something for the smoker
@Viss @FuturisticRobert @krypt3ia Swim trunks? I thought it was a party.
