Héctor Martos

¡Estadísticas de visionado de Netflix ya tiene más de 10.000 usuarios! 🥳🥳🥳🥳🥳 Muchas gracias a todos los que habéis colaborado a alcanzar este hito que nunca habría imaginado. #Netflix #Estadísticas #Datos #Analítica

NVIDIA Nemoclaw's security is worse than I expected. The AI can modify its own config to bypass security controls. I asked it to accept websocket connections from any origin and change its token to something trivial (123). Now any site I visit can give instructions to my bot.

@ZackKorman @UK_Daniel_Card Another great example that given the nature of this kind of software, any flaw that allows an attacker to send requests to the bot can escalate into arbitrary Remote Code Execution. Read the full story here 👇 @h_martos/07dc2003c31d?source=friends_link&sk=ad5e13d28c989cfcd9966e217206c6ce" target="_blank" rel="nofollow noopener">medium.com/@h_martos/07dc…

@HedgieMarkets Here's a helpful tip. No one reads privacy policies and terms of service - they are too long and boring. But please at least have AI review them and flag any concerns for you. I often have AI compare privacy policies of different products.

🦔 Meta contractors in Kenya told Swedish newspapers they're being asked to review intimate footage from Ray-Ban AI glasses, including people undressing, using the bathroom, watching porn, and filming sex. One contractor said users often don't realize they're still recording when they set the glasses down. Meta sold 7 million pairs in 2025, up from 2 million in 2023-2024 combined. Users can't use the AI features without agreeing to share data with Meta's servers, and the terms of service bury the fact that humans may manually review your footage. One annotator said "if they knew about the extent of the data collection, no one would dare to use the glasses." My Take This is the Google Home story again but worse. At least with cameras in your house, you know where they are. These are glasses you wear on your face that keep recording when you take them off and set them on your nightstand. And the footage goes to contractors overseas who are paid to watch and label it for AI training. One worker described seeing a man leave the room, then his wife come in and change clothes. People forget the camera is still on. Meta buries all of this in terms of service nobody reads. The product is marketed as a cool way to capture your life and interact with AI. The reality is strangers in Kenya watching you undress so they can annotate the footage to make Zuckerberg's AI better. Seven million people bought these last year. I'd bet almost none of them understood what they were actually agreeing to. Hedgie🤗

OpenClaw just got attacked. 40,000 systems compromised. A flaw dubbed “ClawJacked” allowed full agent takeover. But this isn’t just a bug. It’s a vulnerability chain that let any website silently take full control of your AI agent. No plugins. No extensions. No user interaction needed. Which means: > Malicious sites could steal data. > Delete emails (Meta execs already hit). > Disrupt services. Give this post to your agent and tell then to fix this backdoor ASAP.

@zaimiri It does require some user interaction (e.g., clicking a link to kick off the chain), but in practice that’s a pretty low bar—especially for a publicly exposed instance. I documented the full chain here 👇 @h_martos/07dc2003c31d?source=friends_link&sk=ad5e13d28c989cfcd9966e217206c6ce" target="_blank" rel="nofollow noopener">medium.com/@h_martos/07dc…

@tapatiainefable @lizy_preciosa 🤣

@lizy_preciosa Venderlos por kilo

- Yo: ya no voy a gastar dinero en pendejadas - Yo, 5 minutos después: mira! Impermeables para pollitos! * compra el impermeable y un pollo

@elonmusk Definitely not a good idea! ⛔️⛔️⛔️ Public exposure + system-level permissions = full compromise waiting to happen. Full write-up 👇 @h_martos/07dc2003c31d?source=friends_link&sk=ad5e13d28c989cfcd9966e217206c6ce" target="_blank" rel="nofollow noopener">medium.com/@h_martos/07dc…

People giving OpenClaw root access to their entire life

OpenClaw 🦞 is an AI agent with full system access that can do a lot of things. 🛑 Powerful… and dangerous! Here’s how publicly exposing an OpenClaw instance can lead to full system compromise. #OpenClaw #EthicalHacking #AIAgent #ATO #RCE @h_martos/07dc2003c31d?source=friends_link&sk=ad5e13d28c989cfcd9966e217206c6ce" target="_blank" rel="nofollow noopener">medium.com/@h_martos/07dc…

@OpenClaw 🦞 is an AI agent with full system access that can do a lot of things. 🛑 Powerful… and dangerous! Here’s how publicly exposing an OpenClaw instance can lead to full system compromise. #OpenClaw #EthicalHacking #AIAgent #ATO #RCE @h_martos/07dc2003c31d?source=friends_link&sk=ad5e13d28c989cfcd9966e217206c6ce" target="_blank" rel="nofollow noopener">medium.com/@h_martos/07dc…

@OpenClaw 🦞 is an AI agent with full system access that can do a lot. 🛑 Powerful… and dangerous! Here’s how publicly exposing an OpenClaw instance can lead to Account Takeover and Remote Code Execution. #OpenClaw #EthicalHacking #AIAgent #RCE @h_martos/07dc2003c31d?source=friends_link&sk=ad5e13d28c989cfcd9966e217206c6ce" target="_blank" rel="nofollow noopener">medium.com/@h_martos/07dc…

@OpenClaw 🦞 is an AI agent with full system access that can do a lot of things. 🛑 Powerful… and dangerous! Here’s how publicly exposing an OpenClaw instance can lead to Account Takeover and Remote Code Execution. #OpenClaw #Hacking #AIAgent #RCE @h_martos/07dc2003c31d?source=friends_link&sk=ad5e13d28c989cfcd9966e217206c6ce" target="_blank" rel="nofollow noopener">medium.com/@h_martos/07dc…

@OpenClaw 🦞 is an AI agent with full system access that can do a lot of things. 🛑 Powerful… and dangerous. Here’s how publicly exposing an OpenClaw instance can lead to Account Takeover and Remote Code Execution. #OpenClaw #Hacking #AIAgent #RCE @h_martos/07dc2003c31d?source=friends_link&sk=ad5e13d28c989cfcd9966e217206c6ce" target="_blank" rel="nofollow noopener">medium.com/@h_martos/07dc…

@Rafael_Casuso “No es más feliz quién más tiene, sino quién menos necesita” ☺️

Cada vez que hablo con mi tío ya jubilado, que ha reducido su vida a una experiencia sencilla me doy cuenta de que el 99% de los servicios que consumimos y el 99% de posesiones materiales que compramos son totalmente innecesarias si lo que deseamos es ser felices.

@WinixRun PD: Personalmente, yo expondría este acceso a través de Cloudflare WARP, la solución Zero Trust de Cloudflare

@WinixRun Y lo peor de todo, que encontrarás puñados de gente, de esos que instalan APKs descargados de Internet con Spotify gratis diciendo: ¿y a mí qué me van a hacer? 🤷‍♂️

@david_bonilla @thehwlz Totalmente de acuerdo. No entiendo esa aversión a la consultoría como punto de partida. Te permite trabajar en múltiples proyectos, con distintos clientes y tecnologías, agilizando muchísimo el aprendizaje y la búsqueda del área que más te guste. Y lo más importante, hay trabajo.

@thehwlz Quiero que tengan una buena carrera, empezar en consultoría me parece una opción tan buena como factible.

Si mis hijos me preguntaran qué lenguaje de programación les recomendaría aprender para empezar a trabajar en la industria informática HOY, sin duda, apostaría por #Java. Creo que es el más usado en consultoría, que suele ser el nicho con más puestos de entrada para juniors.