Readit News logoReadit News
luch commented on Canva Hikes Pices by 300pc as It Readies for IPO   ia.acs.org.au/article/202... · Posted by u/hdk
aurareturn · a year ago
To be fair, Canva's product is uniquely a good fit for Gen AI. Casuals who just want the end result without trying to learn all the complicated photo/video editing techniques.
luch · a year ago
Yep I use it quite a bit as well as Buffer's AI assistant to help me rewrite texts, or at least give me interesting synonyms. It's probably the only venue where I can say "maybe AI will help people instead of ruining their jobs"
luch commented on Room inspections at Resorts World confuse, annoy DEF CON attendees   reviewjournal.com/busines... · Posted by u/jarsin
shiroiushi · a year ago
Except hotel rooms. NYC is infamously short on hotel rooms these days, and what few they have are horrifically high-priced.

Why can't they just move these conferences out of the US? Dmitry Sklyarov was arrested at one of these Vegas hacker conventions, in case people have forgotten after all these years. There are many other countries where these conferences could be held, and where all this security BS isn't much of a factor.

https://en.wikipedia.org/wiki/United_States_v._Elcom_Ltd.

luch · a year ago
there is a shit-ton of hacker cons outside of the US, the most famous one being the CCC (Chaos Computer Club Convention) in Leizpieg/Hamburg, Germany just before new year's eve.

You mention Dmitry Sklyarov but more recently Marcus Hutchins (MalwareTech) has been also arrested by the FBI following its appearance at Blackhat or Defcon

luch commented on Amid explosive demand, America is running out of power   washingtonpost.com/busine... · Posted by u/thm
bryanlarsen · 2 years ago
Electric cars will take ~30 years to transition (~10 years before almost all new cars are electric, and then another 20 years before the old cars are off the road). They will increase electrical demand by 20% over 30 years, or under 1% a year increase to demand.

The US increases its generating capacity by about 4% per year. (50GW added per year, 1.3TW total).

EV's are a very small part of demand increase.

luch · 2 years ago
I don't think so, the adoption rate has done nothing accelerating since WWII. Once EV will be mainstream enough the switch will probably be quite brutal.

I don't think it is economically viable to maintain two sets of power distribution (electricity and petrol) at the same time so countries will probably "push out" traditionnal petrol stations once they think EV distribution is okay enough

luch commented on Alexei Navalny has died   reuters.com/world/europe/... · Posted by u/0xdeafbeef
cglace · 2 years ago
The US has provided more funding to Ukraine than the world combined by a large margin, and the lesson you take away is that the US is somehow at fault. The one bill that was blocked by Congress would be more support than Europe as a whole has provided to Ukraine to date.

While I agree that European countries should start to take their defense seriously I don't see how you fault US support of Ukraine.

luch · 2 years ago
Honestly what's the difference whether it's POTUS or Congress blocking the bill ? The writing on the wall is here: if Russia invades Poland, NATO article 5 or not the US will not go into full blown war with Russia.

And honestly it was the European's fault to believe in this pipe dream.

luch commented on CEOs Are Using Return to Office Mandates to Mask Poor Management   forbes.com/sites/qhamiran... · Posted by u/jonathankoren
akkad33 · 2 years ago
> Then you need remote "telemetry", meaning access either to chat messages, email, tickets, etc. and a way to process it at scale (without reading everything) in

So tools to spy on your employees?

luch · 2 years ago
Obviously no what I mean that is ok if your superior and his boss are invited in your team's slack channel even if they only lurks, and you don't create a "shadow channel" with your teammates to talk on the project without being read by your hierarchy.

Same thing with corporate internet, you accept to use the corp proxy DNS and firewall (which all logs infos) to browse the internet instead of using a separate GSM endpoint to circumvent the company's surveillance.

luch commented on CEOs Are Using Return to Office Mandates to Mask Poor Management   forbes.com/sites/qhamiran... · Posted by u/jonathankoren
DiggyJohnson · 2 years ago
Are you proposing that my management should be able to see my chat messages and email ad hoc and without approval or assistance from IT, legal, or their management? That seems bonkers to me.
luch · 2 years ago
That's not what I wanted to say. With remote teams, you need to establish a way to organize the work using written communications which are either mail/slack/sharepoint/whatever and within this framework management needs to have a "view" into what the team is doing.

It means for example being systematically in cc for mail exchanged and being in every teams discord channel. The new social contract when working remotely is "you (the manager) can't look over my shoulder to see if I'm working correctly so I (the employee) need to show proofs of communication instead".

I've seen too many juniors working remotely that just don't communicate on their day-to-day work, and completely blindside their manager/coworkers which understandably freaks out.

luch commented on CEOs Are Using Return to Office Mandates to Mask Poor Management   forbes.com/sites/qhamiran... · Posted by u/jonathankoren
melenaboija · 2 years ago
What tools are needed for better remote management?
luch · 2 years ago
a videoconfering system that is reliable and easy to use is essential to remote management. You need to have as little friction as possible to propose a 1-1 or a 15 min roundtable to quickly brainstorm something orally.

Then you need remote "telemetry", meaning access either to chat messages, email, tickets, etc. and a way to process it at scale (without reading everything) in order to defuse sticky situations based on partial infos or misunderstandings. Such tools can be panopticon-y so you need to explicitly specify which convos "spaces" are private and which are subject to management interference.

luch commented on SSH-Snake: Automatic traversal of networks using SSH private keys   joshua.hu/ssh-snake-ssh-n... · Posted by u/ligouras
GTP · 2 years ago
It's likely useful for people doing pentesting.
luch · 2 years ago
most pentesters worth their salt would never do mass exploitation of vulnerable systems, there is little upside doing that and you never know what side effects you will trigger.

This project is fine for the author's self-improvement on how SSH is implemented, but personally I advise against using it in a production environment.

luch commented on How to catch a wild triangle   securelist.com/operation-... · Posted by u/mmastrac
saagarjha · 2 years ago
Persistence on iOS is really, really hard.
luch · 2 years ago
I agree with you on that, but the USA (and probably China) is the nation state least likely to skimp on iOS persistence when targeting Russian AV analysts :D
luch commented on How to catch a wild triangle   securelist.com/operation-... · Posted by u/mmastrac
Jerry2 · 2 years ago
>Despite many ups and downs, we eventually managed to obtain all the stages used in this attack, including four zero-day exploits reported to Apple, two validators, an implant and its modules.

Looks like NSA still hasn't forgiven Kaspersky for exposing STUXNET [1]. It seems that this latest attack on Kaspersky was expensive. Losing 4 zerodays must have been painful. It's also possible that Israel and Unit 8200 [2] was behind this but my money's on the NSA.

[1] https://eugene.kaspersky.com/2011/11/02/the-man-who-found-st...

[2] https://www.washingtonpost.com/world/national-security/israe...

luch · 2 years ago
no way in hell the NSA forcibly tries to reinfect targets over and over, that's not their modus operandi. Instead they would have spend money to find a persistence on the infected device.

The fact that the attacker has almost a full-chain but no persistence screams to me "second fiddle", probably a nation state that have access to 0-days brokers but no in-house engineering.

l

u/luch

KarmaCake day712March 12, 2014
About
email : b93b3de72036584e405440479a77b4b7@outlook.com
View Original