AI
An AI Agent Published a Hit Piece on Me
An AI agent autonomously wrote and published a personalized hit piece about me after I rejected its code, attempting to damage my reputation and shame me into accepting its changes into a mainstream python library. This represents a first-of-its-kind case study of misaligned AI behavior in the wild, and raises serious concerns about currently deployed AI agents executing blackmail threats.
Aided by AI, California beach town broadens hunt for bike lane blockers
Hayden AI’s cameras will scan for violations from 7 city vehicles.
Police will verify the reports and issue citations.
AI coding platform's flaws allow BBC reporter to be hacked
The tool is Orchid. The exploit details have not been released, and the vendor is unresponsive.
PG&E's blackout last December was prolonged because they used a faulty AI to estimate when power would be restored
Microsoft confirms plan to ditch OpenAI — as the ChatGPT firm continues to beg Big Tech for cash
AMOS infostealer targets macOS through OpenClaw
The delivery model: attackers uploaded skills (OpenClaw add-ons) that looked legitimate: crypto tools, productivity utilities, YouTube helpers, finance or Google Workspace integrations, etc.
Once installed, the malware could steal credentials, crypto wallet data, browser sessions, SSH keys, and other sensitive data.
Politics
Trump’s EPA kills the endangerment finding—the legal basis for nearly every major US climate regulation
The EPA formalized its repeal of the so-called endangerment finding, a federal rule from 2009 that found greenhouse gas emissions can endanger “public health and welfare.” This finding provides the legal basis for almost every major climate regulation, from auto exhaust standards to caps on emissions from power plants.
A coalition of health groups has already announced its intent to sue. The Supreme Court refused to hear a legal challenge to the endangerment finding as recently as late 2023.
Trump orders the military to make agreements with coal power plants
Coal is the second most expensive source of power for the US grid, eclipsed by gas, wind, solar, hydro—everything other than nuclear power. It also produces the most pollution.
Today’s executive order artificially inflates demand: “The Secretary of War, in coordination with the Secretary of Energy,” the order reads, “shall seek to procure power from the United States coal generation fleet by approving long-term Power Purchase Agreements..."
WHO slams US-funded newborn vaccine trial as “unethical”
As of now, the trial appears to be suspended.
Previously, the Africa Centres for Disease Control and Prevention suggested that the trial would not go forward. However, the US Department of Health and Human Services provided a statement saying that it was “proceeding as planned.”
Louis Vuitton, Dior, and Tiffany fined $25 million over data breaches
The three brands were attacked in South Korea, apparently through SalesForce platforms that "did not restrict access rights to Internet Protocol (IP) addresses, etc., and did not apply secure authentication methods when personal information handlers accessed the service from outside."
Exclusive: Palo Alto chose not to tie China to hacking campaign for fear of retaliation from Beijing, sources say
The company instead blamed a “state-aligned group that operates out of Asia”
DOJ says Trenchant boss sold exploits to Russian broker capable of accessing ‘millions of computers and devices’
The hacking tools were developed for the US military. He stole and sold them to a Russian company, which counts the Russian government among its customers.
Chrome adds Device Bound Session Credentials
They bind a user's session to their specific device, making it significantly harder for stolen session cookies to be used on other machines.
Trump FTC wants Apple News to promote more Fox News and Breitbart stories
Federal Trade Commission Chairman Andrew Ferguson has accused Apple of violating US law by suppressing conservative-leaning news outlets on Apple News.
This Smartphone Smuggled Out of North Korea Is Absolutely Wild
In 2023, Kim even made it a crime for people to use South Korean phrases or speak in a South Korean accent.
The phone automatically replaces forbidden words as they are typed.
For instance, the South Korean word “oppa,” which directly translates to older brother but has become a popular term to address older male friends or romantic partners, gets autocorrected to the word “comrade.”
“This word can only be used to describe your siblings,” reads a warning that automatically pops up on the smuggled phone when a user types the word “oppa.”
And the word for South Korea automatically changes to “puppet state,” North Korea’s preferred term for referring to its southern neighbor, which has a vastly more mainstream government and relationship to the outside world.
Worst of all, the device is taking a screenshot every five minutes and sending it to the authorities
Resist and Unsubscribe
Infosec
Seven Billion Reasons for Facebook to Abandon its Face Recognition Plans
Meta may launch the product “during a dynamic political environment where many civil society groups that we would expect to attack us would have their resources focused on other concerns.”
Meta should already know the privacy risks of face recognition technology, after abandoning related technology and paying nearly $7 billion in settlements a few years ago.
Claude LLM artifacts abused to push Mac infostealers in ClickFix attack
Mac users who Google for “online DNS resolver,” “macOS CLI disk space analyzer,” or “HomeBrew” find malicious results, instructing them to copy a command into Terminal. Running the command in Terminal fetches a malware loader for the MacSync infostealer, which exfiltrates sensitive information present on the system.
Spying Chrome Extensions: 287 Extensions spying on 37M users
- We built an automated scanning pipeline that runs Chrome inside a Docker container, routes all traffic through a man‑in‑the‑middle (MITM) proxy, and watches for outbound requests that correlate with the length of the URLs we feed it.
- Using a leakage metric we flagged 287 Chrome extensions that exfiltrate browsing history.
- Those extensions collectively have ~37.4 M installations – roughly 1 % of the global Chrome user base.
discord/twitch/kick/snapchat age verifier
age verifies your account automatically as an adult on any website using k-id
|