Steve Weis

8.2K posts

Steve Weis

Steve Weis

@sweis

Software engineer at @anthropicai interested in cryptography, security, privacy, and machine learning.

San Francisco Katılım Temmuz 2007
2.8K Takip Edilen10.5K Takipçiler
Steve Weis
Steve Weis@sweis·
@NumanThabit The point would be to demonstrate a unique quantum computing advantage as a marker of progress, which this doesn't do.
English
0
0
7
86
Numan
Numan@NumanThabit·
@sweis the point is completely different tho
English
2
0
1
125
Steve Weis
Steve Weis@sweis·
The problem size is too small for this to be meaningful. I reproduced these results running them against a random number generator instead of a quantum computer.
Project Eleven@projecteleven

Project Eleven Awards 1 BTC Q-Day Prize for Largest Quantum Attack on Elliptic Curve Cryptography to Date Researcher breaks 15-bit ECC key on publicly accessible quantum hardware in a 512x jump from the previous public demonstration. Project Eleven today awarded the Q-Day Prize, a one Bitcoin bounty, to Giancarlo Lelli for breaking a 15-bit elliptic curve key on a publicly accessible quantum computer. The result is the largest public demonstration to date of the attack class that threatens Bitcoin, Ethereum, and over $2.5 trillion in ECC-secured digital assets. "The resource requirements for this type of attack keep dropping, and the barrier to running it in practice is dropping with them," said @apruden08, CEO of Project Eleven. "The winning submission came from an independent researcher working on cloud-accessible hardware. No national lab, no private chip. It shows that tangible progress is possible and highlights the urgency to migrate to post-quantum cryptography sooner rather than later. Google just committed to being quantum-secure by 2029. The window to get ahead of this is closing.” Lelli derived a private key from its public key across a search space of 32,767 using a variant of Shor’s algorithm. Shor's targets the Elliptic Curve Discrete Logarithm Problem (ECDLP), the math underlying the digital signature schemes securing Bitcoin, Ethereum, and most blockchains. Quantum attacks on ECC have moved from theory to practice over the last seven months. Steve Tippeconnic's 6-bit demonstration in September 2025 was the first public break on quantum hardware. Lelli's 15-bit result extends it by a factor of 512. Theoretical resource estimates for a full 256-bit attack, the scale Bitcoin operates at, have fallen sharply over the same period. Google's April 2026 whitepaper put the requirement at under 500,000 physical qubits. A subsequent paper from Caltech and Oratomic brought that figure as low as 10,000 qubits in a neutral-atom architecture. Lelli's result is the practical counterpart to those optimizations. The distance from 15 bits to 256 bits is large, but the gap is increasingly viewed as an engineering problem and not a fundamental physics problem. Roughly 6.9 million Bitcoin sit in wallets whose public keys are visible on-chain, exposing them to quantum attack. All blockchains using ECC share similar risks with vulnerable assets. Project Eleven is developing its next challenge, focused on the intersection of frontier AI models and quantum cryptanalysis.

English
4
0
35
3.4K
Steve Weis
Steve Weis@sweis·
Nomination for worst recruiter email.
Steve Weis tweet media
English
1
0
45
10.5K
Steve Weis
Steve Weis@sweis·
"[Firefox applied] an early version of Claude Mythos Preview to Firefox. This week’s release of Firefox 150 includes fixes for 271 vulnerabilities identified during this initial evaluation." blog.mozilla.org/en/firefox/ai-…
English
2
7
27
4.7K
Steve Weis retweetledi
Claude
Claude@claudeai·
Introducing Claude Opus 4.7, our most capable Opus model yet. It handles long-running tasks with more rigor, follows instructions more precisely, and verifies its own outputs before reporting back. You can hand off your hardest work with less supervision.
Claude tweet media
English
4.8K
10.2K
81.1K
13.9M
Steve Weis
Steve Weis@sweis·
@InsanityBit Yeah, Firecracker is very good and this is a rare CVE. I think there have only been 2 in 2026, which are the first since 2020. Crashing the VMM is bad though and I would not bet against Claude to find an escape chain given enough tokens.
English
1
0
1
156
Colin O'Brien
Colin O'Brien@InsanityBit·
@sweis Yeah but notably this is one of the only ones it failed to build a POC for, and I'm skeptical that it could without another vuln. Firecracker bug density is so low that building a full escape chain is, to my knowledge, something that has never actually been done.
English
2
0
4
861
Steve Weis
Steve Weis@sweis·
Claude found a CVE in Firecracker VMM that "might allow a local guest user with [guest VM] root privileges to crash the Firecracker VMM process or potentially execute arbitrary code on the host": aws.amazon.com/security/secur…
English
6
19
144
21K
Steve Weis
Steve Weis@sweis·
@AndrewMohawk Buckle up, because the CVE train is going to be a wild ride for the foreseeable future.
English
0
0
0
33
AndrewMohawk⁽ⁿᵘˡˡ⁾
AndrewMohawk⁽ⁿᵘˡˡ⁾@AndrewMohawk·
@sweis You are correct, clearly just raging about all the mad CVEs that people are having to continually patch, read this one like a fool and didn’t realize it was more than the same context! Deleting original tweet, appreciate the call out!!
English
1
0
0
30
Matei Zaharia
Matei Zaharia@matei_zaharia·
@databricks Definitely unexpected! It wouldn't have been possible without my collaborators at Databricks and my grad students.
English
19
5
198
16.7K
Databricks
Databricks@databricks·
We're incredibly proud to congratulate our co-founder and CTO, @matei_zaharia, on receiving the ACM Prize in Computing for his development of distributed data systems that have enabled large-scale machine learning, analytics, and AI. Matei's open-source contributions have fundamentally changed how organizations work with data and AI — including Apache Spark™, Delta Lake, and MLflow. Researchers, nonprofits, startups, and enterprises across every industry have built on the foundation he helped create. Now he's pushing the frontier further, focusing on building and scaling reliable AI agents through open-source research like DSPy and GEPA. Matei, this recognition is so well deserved. We're honored to build alongside you every day. awards.acm.org/about/2025-acm…
Databricks tweet media
English
3
23
220
29.2K
Steve Weis
Steve Weis@sweis·
wakin' up to all my claudes in the morning
GIF
English
1
2
6
586
Matt Slotnick
Matt Slotnick@matt_slotnick·
did they really have to rub it in with the title like this
Matt Slotnick tweet media
English
36
23
1.8K
3.2M
Steve Weis retweetledi
Kevin Roose
Kevin Roose@kevinroose·
NEWS: Anthropic's new model, Claude Mythos, is so powerful that it is not releasing it to the public. Instead, it is starting a 40-company coalition, Project Glasswing, to allow cybersecurity defenders a head start in locking down critical software. nytimes.com/2026/04/07/tec…
English
188
873
5.4K
1.6M
Steve Weis retweetledi
Anthropic
Anthropic@AnthropicAI·
Introducing Project Glasswing: an urgent initiative to help secure the world’s most critical software. It’s powered by our newest frontier model, Claude Mythos Preview, which can find software vulnerabilities better than all but the most skilled humans. anthropic.com/glasswing
English
2K
6.7K
44.1K
31.2M

Keşfet

@NumanThabit @sejaques @InsanityBit @AndrewMohawk @matei_zaharia @databricks @matt_slotnick @elonmusk