Engineering &
Security Wire
Curated from Hacker News, Lobsters, Krebs on Security, and other top sources. Updated every 6 hours.
I don't want your PRs anymore
Comments
Switching from uv to PDM
Comments
The zero-days are numbered
Comments
ChatGPT Images 2.0
Livestream: https://openai.com/live/ System card: https://deploymentsafety.openai.com/chatgpt-images-2-0/chatg... Comments URL: https://news.ycombinator.com/item?id=47852835 Points: 351 # Comments: 365
SystemBC C2 Server Reveals 1,570+ Victims in The Gentlemen Ransomware Operation
Threat actors associated with The Gentlemen ransomware‑as‑a‑service (RaaS) operation have been observed attempting to deploy a known proxy malware called SystemBC. According to new research published by Check Point, the command-and-control (C2 or C&C) server linked to SystemBC has led to the discovery of a botnet of more than 1,570 victims. "SystemBC establishes SOCKS5 network tunnels within
Framework Laptop 13 Pro
99 points, 33 comments on Hacker News
Cal.diy: open-source community edition of cal.com
8 points, 0 comments on Hacker News
Meta to start capturing employee mouse movements, keystrokes for AI training
Alt link: https://tech.yahoo.com/ai/meta-ai/articles/exclusive-meta-st... Comments URL: https://news.ycombinator.com/item?id=47851948 Points: 292 # Comments: 259
Meta capturing employee mouse movements, keystrokes for AI training data
Article URL: https://economictimes.indiatimes.com/tech/technology/meta-to-start-capturing-employee-mouse-movements-keystrokes-for-ai-training-data/articleshow/130422612.cms?from=mdr Comments URL: https://news.ycombinator.com/item?id=47851948 Points: 23 # Comments: 5
Britannica11.org – a structured edition of the 1911 Encyclopædia Britannica
47 points, 30 comments on Hacker News
The Vercel breach: OAuth attack exposes risk in platform environment variables
75 points, 26 comments on Hacker News
Ibuilt a tiny Unix‑like 'OS' with shell and filesystem for Arduino UNO (2KB RAM)
7 points, 0 comments on Hacker News
Work with the garage door up
108 points, 84 comments on Hacker News
Trellis AI (YC W24) Is hiring engineers to build self-improving agents
1 points, 0 comments on Hacker News
You don't want long-lived keys
13 points, 10 comments on Hacker News
A Periodic Map of Cheese
60 points, 28 comments on Hacker News
Show HN: Daemons – we pivoted from building agents to cleaning up after them
For almost two years, we've been developing Charlie, a coding agent that is autonomous, cloud-based, and focused primarily on TypeScript development. During that time, the explosion in growth and development of LLMs and agents has surpassed even our initially very bullish prognosis. When we started Charlie, we were one of the only teams we knew fully relying on agents to build all of our code. We all know how that has gone — the world has caught up, but working with agents hasn't been all kittens and rainbows, especially for fast moving teams. The one thing we've noticed over the last 3 months is that the more you use agents, the more work they create. Dozens of pull requests means older code gets out of date quickly. Documentation drifts. Dependencies become stale. Developers are so focused on pushing out new code that this crucial work falls through the cracks. That's why we pivoted away from agents and invented what we think is the necessary next step for AI powered software develop
Force all app traffic into the tunnel
Comments
Features everyone should steal from npmx
Comments
Kasane: New drop-in Kakoune front end with GPU rendering and WASM Plugins
27 points, 3 comments on Hacker News
22 BRIDGE:BREAK Flaws Expose Thousands of Lantronix and Silex Serial-to-IP Converters
Cybersecurity researchers have identified 22 new vulnerabilities in popular models of serial-to-IP converters from Lantronix and Silex that could be exploited to hijack susceptible devices and tamper with data exchanged by them. The vulnerabilities have been collectively codenamed BRIDGE:BREAK by Forescout Research Vedere Labs, which identified nearly 20,000 Serial-to-Ethernet converters exposed
CrabTrap: An LLM-as-a-judge HTTP proxy to secure agents in production
https://www.brex.com/journal/building-crabtrap-open-source Comments URL: https://news.ycombinator.com/item?id=47850212 Points: 61 # Comments: 12
Original GrapheneOS responses to WIRED fact checker
Article URL: https://discuss.grapheneos.org/d/34369-original-grapheneos-responses-to-wired-fact-checker Comments URL: https://news.ycombinator.com/item?id=47849854 Points: 201 # Comments: 114
Partnering with industry leaders to accelerate AI transformation
Google DeepMind partners with global consultancies to bring the power of frontier AI to organizations around the world.
‘Scattered Spider’ Member ‘Tylerb’ Pleads Guilty
A 24-year-old British national and senior member of the cybercrime group "Scattered Spider" has pleaded guilty to wire fraud conspiracy and aggravated identity theft. Tyler Robert Buchanan admitted his role in a series of text-message phishing attacks in the summer of 2022 that allowed the group to hack into at least a dozen major technology companies and steal tens of millions of dollars worth of cryptocurrency from investors.
Advanced Packaging Limits Come into Focus
27 points, 5 comments on Hacker News
The mail sent to a video game publisher
10 points, 0 comments on Hacker News
Ransomware Negotiator Pleads Guilty to Aiding BlackCat Attacks in 2023
A third individual who was employed as a ransomware negotiator has pleaded guilty to conducting ransomware attacks against U.S. companies in 2023. Angelo Martino, 41, of Land O'Lakes, Florida, teamed up with the operators of the BlackCat ransomware starting in April 2023 to assist the e-crime gang in extracting higher amounts as ransoms. "Working as a negotiator on behalf of five different
Fusion Power Plant Simulator
92 points, 35 comments on Hacker News
Show HN: GoModel – an open-source AI gateway in Go
110 points, 38 comments on Hacker News
Aggregated from public RSS feeds & the Hacker News API · All links point to original sources · Clawship does not republish full articles