@GossiTheDog@cyberplace.social
@GossiTheDog@cyberplace.social avatar

GossiTheDog

@GossiTheDog@cyberplace.social

Cybersecurity weather person and award winning shitposter. Shitposting is an anagram of Top Insights. You may be surprised to know I am not representing my employer here and these are not their opinions.

I have Direct Messages disabled - you can send them, but I will never receive them.

This profile is from a federated server and may be incomplete. Browse more on the original instance.

GossiTheDog, to random
@GossiTheDog@cyberplace.social avatar

It's 2am and I'm going through this Copilot+ PC (kindly provided) and we're into the profanity filtering.

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

Amazingly not a single thing Microsoft has been working on with Recall and various AI services is on VirusTotal. It would be a shame if it got uploaded, right.

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

It's actually pretty funny as you can just extract the wordlists from RAM and then use them against live Copilot, e.g. there's always allowed terms blah blah.

There's a similar thing where there's a bunch of Azure AI services run locally and it looks like a bunch of things overlap with the Azure hosted versions, people will definitely poke this while looking at Recall methinks.

GossiTheDog, to random
@GossiTheDog@cyberplace.social avatar

I just almost accidentally tooted a photo of my cat’s latest diarrhoea episode.

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

My dog has started limping quite badly tonight and my cat keeps squirting shit, AMA

GossiTheDog, to random
@GossiTheDog@cyberplace.social avatar

time. Taking off from London City airport. Have a 24gb VRAM GPU... it is using 94% of the 24gb just at the airport.

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

Up, up and away*.

GossiTheDog,
@GossiTheDog@cyberplace.social avatar
GossiTheDog, to random
@GossiTheDog@cyberplace.social avatar

Twitter is wild for galaxy brain 'controversial' replies.

Microsoft could release Windows 12, where it automatically posts your screen to Instagram every 1 minute, and somebody would be like 'You can disable it if you want, it's fine, blowback totally overblown, people are just thick'.

GossiTheDog, to random
@GossiTheDog@cyberplace.social avatar

If you’re ever feeling sad in your career please remember that in 2017, Universal execs proudly announced to the world they were making a cinematic universe from The Mummy and The Invisible Man.

GossiTheDog, to random
@GossiTheDog@cyberplace.social avatar

Shout out to our cat, who had burned through another thousand quid in vets treatment in the past month.

sick cat GIF

GossiTheDog, to random
@GossiTheDog@cyberplace.social avatar

Synnovis aka Synlab, a key NHS frontline service supplier, has been hit by ransomware. #threatintel

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

Statement from NHS on London hospital ransomware incident. HT @brett

https://www.england.nhs.uk/london/2024/06/05/nhs-london-statement-on-synnovis-ransomware-cyber-attack-2/

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

As predicted there continues to be rolling media coverage. It is also on many reporters doorsteps, but attacks on the NHS are sadly not new.

It is indeed Qilin ransomware group, I have the ransom note.

The same company involved got hit by Black Basta recently.

GossiTheDog, to random
@GossiTheDog@cyberplace.social avatar

Very big cyber incident playing out at Snowflake, who describe themselves as “AI Data Cloud”. They have a free trial where anybody can sign up and upload data… and they have.

Threat actors have been scraping customer data using a tool called rapeflake, for about a month.

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

image/png

GossiTheDog, to random
@GossiTheDog@cyberplace.social avatar

For those who aren’t aware, Microsoft have decided to bake essentially an infostealer into base Windows OS and enable by default.

From the Microsoft FAQ: “Note that Recall does not perform content moderation. It will not hide information such as passwords or financial account numbers."

Info is stored locally - but rather than something like Redline stealing your local browser password vault, now they can just steal the last 3 months of everything you’ve typed and viewed in one database.

video/mp4

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

I hadn’t been aware until today of the external reaction to Recall. Holy shit. Tim Apple must be pleased.

Everything from media coverage to YouTube to TikTok is largely negative. All the comments are negative.

These videos have tens of millions of views and hundreds of thousands of comments.

I knew it would be bad but.. it’s worse. I’ve spent hours looking at the sentiment and.. well, they probably would have got better coverage from launching an NFT of pregnant Clippy.

image/jpeg
image/png
image/jpeg

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

@gulovsen it has some natural query language and image classification stuff.. but it’s not really AI in my opinion, it doesn’t need an NPU chip.

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

A key element of Recall is Microsoft say only you can access your Recall, it is per user.

ArsTechnica enabled Recall on Windows 11 box and tested the claim. By logging in as another user they could access the database and screenshots.

https://arstechnica.com/ai/2024/06/windows-recall-demands-an-extraordinary-level-of-trust-that-microsoft-hasnt-earned/

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

If you want to know how Microsoft have got themselves into this giant mess with Recall, here’s what the documentation says between the lines:

you, the customer, are a simpleton who doesn’t want to be an AI genius yet. Have a caveman mode.

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

Recall and Copilot+ is also coming to ASUS systems, including AMD, in a deal with Microsoft.

ASUS Announces Complete Portfolio of AI-Powered Copilot+ PCs https://www.asus.com/us/news/pnm9tg6qccql6ern/

Nvidia announced they are bringing Copilot+ and Recall to PCs, in a deal with Microsoft: https://www.theverge.com/2024/6/2/24169568/microsoft-copilot-plus-gaming-pc-nvidia-amd

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

Three Copilot+ Recall questions that keep coming up.

Q. Can you alter the Recall history?

A. Yes. You can change the OCR database and change the screenshots as the logged in user or as software running as the local user. There is no audit log of changes.

Q. Are they snapshots, as Microsoft says, or screenshots?

A. They are just screenshots, jpegs.

Q. What is to stop apps on your machine accessing your Recall covertly?
A. Nothing. There is no audit log of access.

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

.@awakecoding becomes the latest person reverse engineering Microsoft Recall https://x.com/awakecoding/status/1798168395583746216

GossiTheDog, (edited )
@GossiTheDog@cyberplace.social avatar

If anybody is wondering what Microsoft's reaction to any of the Copilot+ Recall concerns are, they're continuing to decline comment to every media outlet.

I've seen comments MS staff have been given for enterprise customers, which are nonsense handwaving.

Product ships live on devices from Dell, Lenovo etc this month. https://x.com/zacbowden/status/1798221879741931847

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

As @tiraniddo rightly points out, anybody can programmatically reach the Recall database without admin rights. https://infosec.exchange/@tiraniddo/112566044174482506

GossiTheDog, to random
@GossiTheDog@cyberplace.social avatar

AI Tech Bros are VERY UPSET that reviewers are REVIEWING PRODUCTS

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

The Humane AI pin is being recalled as it has a risk of catching fire… which is also a metaphor for AI products.

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

TIL - the Humane AI pin company is apparently doomed financially, and one of the largest investors is Sam Altman.

I wonder what else Sam Altman invested in.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • megavids
  • khanakhh
  • mdbf
  • ethstaker
  • magazineikmin
  • GTA5RPClips
  • rosin
  • thenastyranch
  • Youngstown
  • InstantRegret
  • slotface
  • osvaldo12
  • kavyap
  • DreamBathrooms
  • JUstTest
  • Durango
  • everett
  • cisconetworking
  • normalnudes
  • tester
  • ngwrru68w68
  • cubers
  • modclub
  • tacticalgear
  • provamag3
  • Leos
  • anitta
  • lostlight
  • All magazines
    •