atkdef

https://github.com/Nightmare-Eclipse/YellowKey

Now why would I say this is a backdoor ? The component that is responsible for this bug is not present anywhere (even in the internet) except inside WinRE image and what makes it raise suspicions is the fact that the exact same component is also present with the exact same name in a normal windows installation but without the functionalities that trigger the bitlocker bypass issue. Why ? I just can't come up with an explanation beside the fact that this was intentional.

Guess who's speedrunning to the stone age.

For some reason I missed that sentence trekking what "GPT Researcher "is, my bad.

I totally agree with what you said, and that confirms it's not a vulnerability. Handing access to others comes with risks, and tools are not responsible for security measures. This is the job of virtualisation or things like LSM.

TBH this article looks like half AI slop to me. ~~What's "GPT researcher"?~~ (edit: for some reason I missed the sentence explaining what it is, my had. My view doesn't change anyway. )

Also, by their logic, a terminal can run "rm -rf /", is this terminal vulnerable? Even more irony, in their report, they said GitHub is not vulnerable. Doesn't this exactly mean it's not the responsibility of MCP?

MCP is basically a protocol for payloads, it's just like protobuf/JSON but for AI. Can we say MCP is vulnerable simply because it can carry malicious payloads?

Make a dumb EV and you immediately get a lot of clients.

An EV doesn't need internet access, doesn't need mics and cameras inside, doesn't need a touchpad or a big screen.

You can.

Open a publisher page, then in the top right corner, look for a gear icon. Click it, and there's an option to ignore this publisher.

Unfortunately there's a limitation. This works only for those having a dedicated publisher page. For publishers without a dedicated page, Steam will fallback to the search page, which doesn't provide a way to ignore this publisher.

"America First"? Trump is not wrong, he simply didn't tell you the verb. "Sell America First".

I have a feeling this can't be fixed unless they fork from a pre-slop point, which is highly unlikely.

The core problem with AI is not being incapable of generating working code, but the ability to maintain by AI or human.

AI has a larger memory (context size) than human. It can generate codes that are difficult for human to understand, and the complexity can build up fast, especially doing vibe coding without clear instructions (especially architectural).

On reaching a critical level, AI starts to make significantly more errors. At this point, no one can maintain, the codes are spaghetti. I think this is where Windows is at.

I wonder if there's a second part of this video that the thing looks like a remote then controls the thing that looks like a car..

Remember what the maintainer of The Pirate Bay once said?

Never be too certain something won't be enforced, as the power of capitalists are far worse than the public can imagine.

Maybe I'm too pessimistic, but this may just be the start. Big corps may find their way to control every aspect, step by step.

The problem is, this may actually NOT about anti-cheat. Just like, age verification is justified by "child protection", anti-cheat may be a gateway to gradually take away the control over the kernel.

As some other people said, if they want effective anti-cheat, why not make it server-side? Maybe I worry too much, but the history tells us these companies likely not act in good faith.

I wonder if this change affects Lemmy clients? I use Voyager and it currently works fine.