Ryan Chow

The wave of security exploits we are going to see in the age of AI-coded AI bots + people giving AI bots full rights to run code on their machines is going to be quite something, I suspect. It will be OK soon (AI security audits will help) but expect a rough start, IMHO. YMMV.

THE SKY IS LEAKING: RESEARCHERS EXPOSE MASSIVE SATELLITE SECURITY MELTDOWN Turns out, space isn’t silent - it’s wide open. A team from UC San Diego and the University of Maryland spent three years eavesdropping on satellites using a $800 off-the-shelf receiver. What they found should terrify governments, telecoms, and anyone who’s ever texted mid-flight: nearly half of all satellite communications were completely unencrypted. They pulled down T-Mobile calls and texts, in-flight Wi-Fi data, power-grid commands, even military and police transmissions - raw, unprotected, drifting through the atmosphere. Troop movements, critical infrastructure controls, corporate traffic - all there, free to anyone who can point an antenna at the sky. The kicker? The researchers estimate they saw only 15% of global traffic. The rest is likely just as naked. Telecoms are now rushing to patch signals, but the spy agencies? They’ve almost certainly been listening for years. We always feared Big Brother was watching. Turns out he didn’t have to... we were broadcasting. Source: UCSD, University of Maryland study, Moinak Pal (Oct 14, 2025)

The Starlink “mini laser” shown in today’s video will connect third party satellites and space stations into the Starlink constellation. The mini laser is designed to achieve link speeds of 25 Gbps at distances up to 4000 km, and was recently successfully tested in orbit on a satellite launched on Starlink G10-20.

@KennethCassel We never really thought about them but they cool

is there an inter Elon company hierarchy? do the Space X people think the boring guys rock or not

@shaneguML Congrats!

After YEARS of waiting and uncertainty, green cards for my family are approved, and we moved to Silicon Valley from Japan last week. I've been in the Bay since 2012 on/off but this is the most exciting time to be here. Excited to join my great colleagues and make ASI🔥

So AI-IDEs that know how to download and incorporate assets (eg responding to a prompt "find a free image of a wizard and use that for the main character") create a whole new kind of vulnerability ready for malicious code injection, right?

Atlantic Diving Supply started as a local dive shop in Virginia Beach in 1979 Now does over $3B revenue and is the 18th largest US government contractor You can just do things

o3 for finding a security vulnerability in the Linux kernel: sean.heelan.io/2025/05/22/how…

@mitchellh Could you provide some details or examples of whitepapers in the expected format/layout?

People liked hearing the non-technical side of enterprise/B2B sales from a technical person so let's continue: another significant non-technical driver of sales is understanding that your buyer doesn't want to get fired, and ensuring buying your product is a safe choice. Engineers hear this and think "the product needs to work well." This isn't the message. I mean, yes, the product needs to work well enough but that's not what I'm talking about here. What I'm talking about is that the mainstream buyer (where 95% of the market value is) is incredibly risk averse and probably not for the reasons you expect. People expect they're risk averse because these might be big important businesses that don't want to break. That's certainly a factor, but the reality is generally a lot more inward: the individual human buyer (or small group of buyers) is personally risk averse. They don't want to fuck up their own prospects. Most working people are punching the clock. They're working a 9-5 to get paid and enjoy their non-work life. Work is just a means to that end. They want to get promoted, they don't want to make mistakes, and they most certainly do not want to get fired. These types of people generally are not going to take a bet on new or uncertain solutions, technical merits notwithstanding. You know the old adage "you don't get fired for IBM?" This is where that rubber meets the road. To sell to these people (again, the vast vast majority of the market), you need to become a safe bet. And again, that's not through technical capability alone. So how do you do it? - Analyst relationships (showing up in things like Gartner reports make me throw up as an engineer but they're irrationally effective) - Trade shows (not dev conferences, sorry, but the ones where I'd be wearing slacks probably) - Whitepapers in an expected format/layout (again, puke, but they work) - Fitting into a standard category (don't make a category, become the solution for an existing category) - High touch sales and support -- the kind of obvious side so I won't get into details here. There's a graveyard of excellent software startups that failed to make an impact because they got blinded by pursuing technical excellence at the cost of realizing businesses only care to a point.

@mttgrmm @tbpn Oops I didn’t zoom in lol was looking at the list on the right Where can I buy an Anduril one?

@ryanchowww @tbpn I'm literally wearing it in this picture... 🤔

I'll be live on @tbpn at 11am PT, drenched in sweat, talking about the Anduril Murph Challenge and our work with the veterans community.

Work on a startup that lets you take cool work trips

Congrats SpaceX, this marks 1,029 satellites deployed so far in 2025. Starlink 2025 Stats; - 42nd Starlink launch for 2025 - 1,029 satellites launched to orbit Per Month: - May: 9 missions, 247 satellites - April: 9 missions, 231 satellites - March: 6 missions, 143 satellites - February: 10 missions, 218 satellites - January: 8 missions, 190 satellites Launches per location: - Cape Canaveral, Florida: 24 - Kennedy Space Center, Florida: 6 - Vandenberg SFB, California : 12 ALL TIME Total Starlink satellites launched: 8,636

Next up: @metalwareinc who specializes in firmware security for critical infrastructure at #RSAC Innovation Sandbox

Congratulations to @ryanchowww from @metalwareinc on a wonderful pitch on firmware security at @RSAConference. If you are building critical infrastructure, medical devices, or other hardware products that run software, check them out.

Side channel attacks for breaking firmware encryption on ESP32 #breaking-flash-encryption-of-espressif-parts" target="_blank" rel="nofollow noopener">courk.cc/breaking-flash… #infosec #espressif

@pronounced_kyle Frequency hopping + per-packet connection IDs

I would love to hear an RF engineer talk about how this is possible. There's only so much 2.4 GHz bandwidth... and planes are gigantic metal tubes...

@rahulvohra @Superhuman 🙏

@ryanchowww @Superhuman Thanks Ryan — DMing you!

. @Superhuman there is a bug in your macOS app when I use an em-dash and then move the cursor to delete a word in another part of the email, the cursor jumps back to the em-dash and deletes it for some reason. @rahulvohra