OpenAI whistleblower found dead in San Francisco apartment: Suchir Balaji, 26, claimed the company broke copyright law. Balaji helped gather and organize the enormous amounts of internet data used to train the startup’s ChatGPT chatbot. Information he held was expected to play a key part in lawsuits against the OpenAI https://www.mercurynews.com/2024/12/13/openai-whistleblower-found-dead-in-san-francisco-apartment/

🟠 "Pwned", The Book, Is Now Available for Free
by @troyhunt
In PDF & EPUB formats.

#TroyHunt #Pwned #freeEbook

https://www.troyhunt.com/pwned-the-book-is-now-available-for-free/

"Science cannot solve the ultimate mystery of nature. And that is because, in the last analysis, we ourselves are part of nature and therefore part of the mystery that we are trying to solve."
Where is Science Going? The Universe in the light of modern physics.

#OTD in 1900.

Max Planck presents a theoretical derivation of his black-body radiation law (quantum theory) at the Physic Society in Berlin.

https://en.wikipedia.org/wiki/Planck%27s_law

Max Planck at PG:
https://www.gutenberg.org/ebooks/author/35343

#bboks #science #physics

I will, in fact, claim that the difference between a bad programmer and a good one is whether he considers his code or his data structures more important. Bad programmers worry about the code. Good programmers worry about data structures and their relationships.

— Linus Torvalds

Oasis Security Research Team Discovers Microsoft #Azure #MFA Bypass

https://oasis.security/resources/blog/oasis-security-research-team-discovers-microsoft-azure-mfa-bypass

not as well know as Moore's Law, but Wirth's law states software is getting slower more rapidly than hardware is becoming faster. We might get new devices millions time faster than a decade ago but things are just as fast but using more resources and power. browsers always end up using all RAM.

#CVE-2024-49194 Databricks JDBC Driver via JAAS, Make JDBC Attack Great Again!!

I’ve included the link to my write-up below. Enjoy!!

https://blog.pyn3rd.com/2024/12/13/Databricks-JDBC-Attack-via-JAAS/

Where do you find musical scores when you don't find them in places like musescore.com?

I'm trying to find the score for an orchestral song by Bernard Herrmann (the prelude for the movie Mysterious Island[1]) but I cannot find it anywhere.

[1] https://www.youtube.com/watch?v=eBdtfxl2yUc

I am super excited to share that my forthcoming book with @alex, THE AI CON: How to Fight Big Tech's Hype and Create the Future We Want, is now available for pre-order!

All the details here: https://thecon.ai/

"I sure wish there was a CTF between Christmas and New Year's"

Good news! @hxp will be running the 38C3 CTF, and it's a qualifier for @defcon CTF too!

https://2024.ctf.link/

Today I have a day off, so I'm going to do exactly what I do on my days off: useless stuff!

I found a curious program, but it comes precompiled for Slackware 3.0 circa 1995, so I have to install it. I assume a.out, though some say it's actually ELF, so maybe I'm looking at recompiling the kernel later.

Finding the distro alone is a bit of a challenge!

🧵

The Db2 for i (SQL) and RPG PTFs for #IBMi 7.5 TR5 and 7.4 TR11 are released today.
💙 #IBMi #rpgpgm #IBMChampion
https://www.rpgpgm.com/2024/12/tr-ptfs-for-db2-now-available.html

25 years later, #curl is now at 0 sscanf calls - and we do not allow new ones to get added

IBM i 7.5 TR 5 and 7.4 TR 11 are now GA - already installed on the first partitions here! 😀

For more information about the contents in the TR's, see these links:
https://www.ibm.com/support/pages/ibm-i-75-tr5-enhancements
https://www.ibm.com/support/pages/ibm-i-74-tr11-enhancements

#IBMi

NATO Secretary-General Mark Rutte delivered a speech recently, urging us to mentally prepare for war. It is worth your time to read the actual speech "But if we are not strong enough, if Putin and others would think that we cannot defend ourselves, then they might start to try to attack us. And already this is happening in the terrain of cyber" -> https://www.nato.int/cps/en/natohq/opinions_231348.htm

Yesterdays link to the Let‘s Encrypt blog dragged in some people who seem to think that CAs are unnecessary or even evil.

LE is s very small group who set out to improve the terrible CA situation and the fucking middle box corruptions.

They did that successfully with a budget that a medium sized city spends on its department for car license plates.

So, my advice: don‘t yell at people who made the world somewhat better or you‘ll soon run out of ones who try.💁🏻‍♂️

Reverse Engineering an STM32 firmware with radare2 https://medium.com/techmaker/reverse-engineering-stm32-firmware-578d53e79b3 #firmware #reverseengineering #radare2

CVE-2024-55557 - Weasis 4.5.1 https://www.partywave.site/show/research/CVE-2024-55557%20-%20Weasis%204.5.1

"let me use an AI and file another bug against #curl

https://github.com/curl/curl/issues/15736