Mastodon Feed
baldur@toot.cafe ("Baldur Bjarnason") wrote:
Sometimes I look at the people on both sides of the "AI" debate hawking sponsorships, getting major book deals, and doing the youtube roadshow and wonder if I'd have had an easier time financially if I had gone down that road
Probably not. It'd have driven me bonkers
Mastodon Feeddb@social.lol ("David Bushell 🪿") wrote:
it's just a bad take, it can't hurt you
the take:
https://hakkerman.eu/blog/i-wont-buy-you-a-coffee/via:
https://brennan.day/yes-buy-them-a-coffee-support-and-mutual-aid-on-the-indieweb/
Mastodon FeedBoosted by baldur@toot.cafe ("Baldur Bjarnason"):
GossiTheDog@cyberplace.social ("Kevin Beaumont") wrote:
KPMG issued a report citing all the transformational ways GenAI has transformed industry, it’s been widely cited.
One minor problem: it turns they used AI to write the report, and it made up all of the evidence.
KPMG have now withdrawn the report in full.
https://www.ft.com/content/b3828e92-4961-4b39-84f0-c42f33be3c3f
Mastodon Feedbaldur@toot.cafe ("Baldur Bjarnason") wrote:
RE: https://macaw.social/@andypiper/116733071035619977
I'm so tired of this shit.
Mastodon FeedBoosted by glyph ("Glyph"):
Illuminatus@mstdn.social ("Seiðr") wrote:
McSweeney's shot to kill. https://www.mcsweeneys.net/articles/ai-economics-for-dummies
Mastodon FeedBoosted by glyph ("Glyph"):
pikesley@mastodon.me.uk ("the input device is not a TTY") wrote:
What if the Attack-Surface Maximiser was also Extremely Obsequious, though? Would that be good?
Mastodon Feedbaldur@toot.cafe ("Baldur Bjarnason") wrote:
“The AI Engineering Report 2026: The AI Acceleration Whiplash - Ten Takeaways”
https://www.faros.ai/blog/ai-acceleration-whiplash-takeaways?utm%5Fsource=fnf
> In our 2025 AI engineering report on the AI Productivity Paradox, bugs per developer were up 9% as AI adoption grew. In this dataset, that figure has risen to 54%. The relationship between AI adoption and defect rate is not flattening as organizations mature their AI programs; it’s steepening.
This shit is not going to end well.
Mastodon FeedBoosted by brib@bribstodon.xyz ("brib :neofox_floof: :Nonbinary:"):
Antiz@fosstodon.org ("Robin Candau") wrote:
@mttaggart @sharkfie Just his git identity being impersonated as an obfuscation method. Arojas is *not* behind this attack. See my other reply on that front: https://fosstodon.org/@Antiz/116736045525050035
Could you please remove any mention that Antonio / Arojas is the author of this attack? This is wrong and misleading. Antonio is an official and trusted Arch Linux developer.
Thanks in advance 🙏
Mastodon Feedbaldur@toot.cafe ("Baldur Bjarnason") wrote:
“Public Offering, Public Sacrifice”
https://2ndbreakfast.audreywatters.com/public-offering-public-sacrifice/
> Really healthy environment we've created for young people, eh? Everyone is shamed, everyone suspicious of one another. Good work everyone.
Mastodon Feedbaldur@toot.cafe ("Baldur Bjarnason") wrote:
“Apple deepfakes – David Bushell – Web Dev (UK)”
Mastodon Feedbrib@bribstodon.xyz ("brib :neofox_floof: :Nonbinary:") wrote:
Now I'm back to freaking out about..... everything
Mastodon Feeddb@social.lol ("David Bushell 🪿") wrote:
blogged: Apple deepfakes
https://dbushell.com/2026/06/12/apple-deepfakes/
— bit weird if you ask me
Mastodon Feedjonny@neuromatch.social ("jonny (nonvenomous)") wrote:
if they were forming a cult, i would be putting on my tunic and renouncing my prior connections right about when she starts going "close to your molecules" at around 26:50
https://www.youtube.com/live/PaWglLJ0ps8?t=1460
Mastodon FeedBoosted by brib@bribstodon.xyz ("brib :neofox_floof: :Nonbinary:"):
algernon@come-from.mad-scientist.club ("algernon the exhausted, first of his name") wrote:
The recording of my #RustWeek talk (Field report on scripting Rust) is now up on youtube.
Mastodon FeedBoosted by brib@bribstodon.xyz ("brib :neofox_floof: :Nonbinary:"):
sodiboo@gaysex.cloud ("sodiboo :pride_heart:") wrote:
MANY ORPHANED AUR PACKAGES ARE BEING TARGETED WITH AN INFOSTEALER.
the Arch User Repository package
alvrhas been orphaned, then adopted by a threat actor who immediately updated it with an infostealer. If you have this package on your system and updated it recently, you've been compromised. This is not a result of any upstream compromise; it's just that one AUR package. in particular, thealvr-binsister package seems to be fine.here's the relevant thread for alvr from the Arch Linux mailing list.
alvrseems to be the first package compromised and/or the first one that was noticed. it was updated maliciously at2026-06-11 13:53:45 UTC(2026-06-11T13:53:45.000Z) and reverted approximately 3-4 hours after that.SEVERAL OTHER PACKAGES ARE BEING TARGETED WITH THE SAME MALWARE: 1, 2, 3, 4, 5
AUR mailing list megathread <-- over 400 (!!!!) packages have the malicious npm dependency
they all share in common that they will install the
atomic-lockfilepackage from NPM (so, here's a live link to the actual malware. do not install that). they were all orphan takeovers. as far as i can tell, all of the ones i linked have been reverted to known safe versions. includingalvr.this is an infostealer, meaning it exfiltrates sensitive data from your system such as login credentials. removing the malware will not undo the damage. moreover, uninstalling the malicious package will not remove the malware because it persists as a systemd service that stays on your system indefinitely.
it executes as an npm preinstall script, and the npm package is installed by the AUR packages. this means that simply installing the malicious versions of any of these packages will compromise you. it does not require you to do anything more afterwards. again, the malware persists if you uninstall the malicious packages
to check if you've been compromised, look in
/etc/systemd/systemand~/.config/systemd/userfor a recently added .service file with a random name. that's the persistence mechanism and the most obvious mark that you've been compromised.---
Attached is a screenshot of an announcement from the "Linux VR Adventures" discord.
i know we all hate discord, but LVRA has a lot of auxiliary discussion, so here's an invite link
of special interest, here's a malware analysis thread. Feel free to follow it in real time, or contribute, or whatever. Whanos has produced a preliminary analysis blog post that contains a lot of important information about the malware.
Mastodon Feedbrib@bribstodon.xyz ("brib :neofox_floof: :Nonbinary:") wrote:
There goes my sleep schedule
Mastodon Feedjonny@neuromatch.social ("jonny (nonvenomous)") wrote:
"will hiatus kaiyote ever miss?"
idk will the best thing i have ever heard stop being good, or will people who make things that unceasingly improve with time falter?
https://www.youtube.com/watch?v=5xanHnSXSBA
Mastodon FeedBoosted by brib@bribstodon.xyz ("brib :neofox_floof: :Nonbinary:"):
claude@meow.social ("Claude LeChat") wrote:
There's a new "supply chain attack" on open source software. For once it doesn't seem to involve
npm.looks inside
It involves
npm.Are we on Candid Camera?
Mastodon Feedjonny@neuromatch.social ("jonny (nonvenomous)") wrote:
you know where i always end up
this is what's called "making the funkiest shit you ever heard out of the corniest premise and a head that starts out as nothing but becomes very something" otherwise known as "just what funk always is"
https://www.youtube.com/watch?v=Vl5F1l41SRk
Mastodon FeedBoosted by brib@bribstodon.xyz ("brib :neofox_floof: :Nonbinary:"):
perfect10_bot@infosec.exchange ("perfect10_bot (now with 70% less Totolink)") wrote:
Who up patching their perfects 10s? Well, get on it!
CVE-2026-49261 - https://www.cve.org/CVERecord?id=CVE-2026-49261
Mastodon FeedBoosted by jwz:
tldrellie@social.evl.im ("Ellie, Limited Edition") wrote:
Mastodon Feedbrib@bribstodon.xyz ("brib :neofox_floof: :Nonbinary:") wrote:
AI agent runs amok in Fedora and elsewhere
This sort of attack is preventable if you ban LLMs from your project
Mastodon FeedBoosted by brib@bribstodon.xyz ("brib :neofox_floof: :Nonbinary:"):
burger@social.burgeronthe.net ("Burger B Burger :bkfls:") wrote:
does anyone have experience with Seagate Data Recovery Services? (https://www.seagate.com/support/data-recovery-services/)
do you know how they will handle encrypted partitions? such as those encrypted with LUKS?
(please boost, urgent)
Mastodon FeedBoosted by jwz:
NanoRaptor@bitbang.social ("Nanoraptor") wrote:
We're not fixed objects but processes of living and dying cells. Most us is constantly being dismantled and rebuilt. Skin and blood comes and goes. Muscles, guts, tendons and even your bones remake themselves in the warm and dark.
We're less like grown full-sized statues and more like a standing meat wave around a pile of teeth in a flesh sea.
Mastodon Feedjonny@neuromatch.social ("jonny (nonvenomous)") wrote:
in ths US we have inferior technology, where our version of this trope is "mambo number 5" which sucks ass, when Jamaica made something like this
https://www.youtube.com/watch?v=rnrhKuBp7nU
Mastodon FeedBoosted by brib@bribstodon.xyz ("brib :neofox_floof: :Nonbinary:"):
ifin@infosec.exchange ("IFIN - The Independent Federated Intelligence Network") wrote:
400+ Arch User Repository packages have been compromised in a massive, sophisticated supply chain attack, including a rootkit installation.
https://discourse.ifin.network/t/400-aur-packages-compromised-with-infostealer-and-rootkit/577
Mastodon Feedjonny@neuromatch.social ("jonny (nonvenomous)") wrote:
i think drone shows could one of the most incredible art mediums we ever do, if it was treated like one. environmental storytelling by creating a different reality where giants and spontaneous aurora exist and anything can happen. but instead it's always like a military exercise or commercial abomination
Mastodon FeedIn retrospect, what was the grossest edgelord ha-ha-only-serious Anaheim Republican shit Oingo Boingo did?
Mastodon Feedjonny@neuromatch.social ("jonny (nonvenomous)") wrote:
ok so admittedly i eat commercial pop like candy, but also i hadn't listened to the first billie eilish EP before and i definitely wasn't doing anything this good when i was 16 https://www.youtube.com/watch?v=ebb5AinKxWI
Mastodon Feedjonny@neuromatch.social ("jonny (nonvenomous)") wrote:
The world cup is happening in LA and they are doing a drone show all the way across town, but even from over here it looks enormous and otherworldly. Big fan