Thinker Friends

@Techjunkie_Aman Ofc CachyOS is compromised. They are deleting any talks regarding Age Verification laws. No freedom of expression, no privacy, no security. This is what CachyOS is all about. They have fallen a long time ago in the hands of the ones who Embrace, Extend, Extinguish

What if CachyOS shouldn’t be trusted? YouTuber Pavlo Kozlenko says you shouldn’t trust it. His video raises concerns about: • security risks • unverifiable builds • and even geopolitics Here’s everything being claimed

@BedtimeKafka @cryptaveli @CR1337 We use it. It's really nice, a power user wouldn't have any issue using it. The issue is more that few apps have a UI built for mobile. When using Android VM this problem disappear. On our end we would never go back to Android (and ofc iPhone are out of the equation)

@cryptaveli @CR1337 Been eying this, would be nice to see it in person first... furilabs.com

Your phone is about to stop being yours. Starting September 2026 an update pushed by Google will block every Android app whose developer hasn't registered with Google, which includes handing over government ID information. Every app and every device, worldwide, with no opt-out. Developers who won't comply will get their apps silently blocked on every device. Keep. Android. Open.

Construyendo un mejor ecosistema junto a @Team1LatAm y @thinkerfriendss 🔺🔺

@Pirat_Nation Good luck doing so against Free and Open Source LLMs

Switzerland’s Finance Minister Karin Keller-Sutter has filed a criminal complaint over online abuse generated by the AI chatbot Grok. The case dates back to March when an anonymous user on the X platform instructed Grok to create a vulgar “roast” of the minister. The complaint, submitted to the Bern public prosecutor’s office and directed at persons unknown, addresses defamation and insult. It also asks authorities to examine whether the platform shares responsibility for hosting such material.

@disruptifier @ReclaimTheNetHQ Banning VPN would be a huge problem in enterprise environment. That would be tough to setup such ban

@ReclaimTheNetHQ I predict we are less than three years away from mandated ID verification to use the internet and mass banning of consumer VPN services in most countries. Anon, you're running out of time to perfect your OpSec.

Digital ID systems always promise security and always deliver breaches. The EU's new age verification app got hacked in under two minutes. Passport photos were stored unencrypted. PIN protection was bypassed with a text editor. Von der Leyen called it "technically ready." Every ID check is a future breach waiting to happen... reclaimthenet.org/eu-age-verific…

@bluegrasslex @vibeonX69 Zsh + grml config

@vibeonX69 I use zsh for everything these days. *shrug* I have fooled around with LISP shells and rc some and they are pretty fun, but zsh pretty much has the best defaults I want on a shell and is easy to customize.

Which Linux shell do you primarily use? -Bash -Zsh -Fish -Dash

@vxunderground There are no problems in any 'AI' department. There are only problems in others Cybersecurity department

Chat, I've changed my mind. We have some problems in the AI department. It turns out someone compromised the Mexican government to an unbelievable extent using nothing but Claude and ChatGPT. I'll link the full paper in the subsequent post. However, here is the highlights of how an unknown Threat Actor "vibe hacked" the Mexico government. Data stolen from... 1. SAT (Servicio de Administracion Tributaria) - Federal tax authority: - 195 million taxpayer records - 52 million directory records 2. Estado de Mexico - State government: - 15.5M vehicle registry records - 3.6M property owner records 3. Registro Civil de CDMX - Mexico City civil registry: - 220M civil records 4. Jalisco state government: - 50K patient records - 17K domestic violence victim records - 36K healthcare employee records - 180K digital government records 5. INE (Instituto Nacional Electoral) - National electoral institute: - 13.8K voter card records 6. Michoacan state government: - 2.28M property records - 2K user accounts with plaintext passwords 7. SADM Monterrey (Agua y Drenaje) Municipal water utility: - 3.5K procurement and vendor records - 5K procurement bid records

@itsmerob1990 @M7mdSaifAlAli @coinbureau There's no issue. It's either dormant because they want to hold, or they lost their keys (mostly because they didn't believe Bitcoin would have any significant value one day back then)

@thinkerfriendss @M7mdSaifAlAli @coinbureau How do you tackle the issue of inactive addresses with loads of early BTC?

⚠️GOOGLE SAYS A QUANTUM ATTACK ON BITCOIN TAKES JUST 9 MINS WITH A 41% SUCCESS RATE Google's quantum team now says cracking Bitcoin may require less than 500K qubits, far below the “millions” once assumed. Research suggests an attack could take 9mins, faster than a typical 10-min block confirmation, giving a 41% success rate. Google now flags 2029 as a key deadline to upgrade Bitcoin’s cryptography before quantum becomes a real threat.

@M7mdSaifAlAli @coinbureau Indeed, updating Bitcoin is extremely easy once we get to agree on changes. Regarding the legacy financial system, it's a WHOLE different story

@coinbureau you people need to understand something, if quantum can crack btc in 9mins then it will break banks in way less time and not just banks basically entire financial systems. However, quantum can be stopped with quantum security so quantum cancels quantum so don't worry.

@JKD_ff @HyperAICapital A growing amount of people are self hosting their AI servers and already saving big money vs Hyperscalers. They think the only option that exists is their datacenters, but that's not the case

It is a bubble, and Larry is one of its biggest beneficiaries so is obviously not going to say so out loud in a BBC interview. Hyperscaler CEOs are drunk on a story that promises the next great growth engine, but the demand is coming from inside the house... circular flows of capital from the mega-cap tech Co's themselves, and thousands upon thousands of AI start-ups, none of which are profitable. Exodus Communications said the same exact thing at the peak of the dotcom bubble; they literally could not build data centers fast enough to keep up with demand. This is from Aug 2000; they were bankrupt a year later...

🚨 THE LARGEST INVESTOR ON EARTH JUST SILENCED THE AI BUBBLE CROWD BlackRock CEO Larry Fink controls $14 trillion in assets. Every Fortune 500 CEO reads his letter before breakfast He just said this in his latest BBC interview: 1. “This is not a bubble” Fink talks directly to hyperscaler CEOs. Their message: demand is outpacing supply. Not slowing. Accelerating. They can’t build fast enough. 2. One data centre = $50 billion A single 1GW AI data centre costs over $50 billion. One tech CEO told Fink he needs 23 gigawatts by 2030. That’s over $1 trillion. From one company. 3. China is building 100GW of nuclear. Right now. That’s 30+ nuclear power stations under construction. While Europe debates planning permission, China pours concrete. 4. The real bottleneck isn’t chips. It’s power. “The biggest issue that limits the West is the cost of power.” His words. Not mine. 5. AI will create a blue-collar boom Fewer analysts. More technicians (e.g. electricians, welders, plumbers). The people who build and maintain AI infrastructure will be in massive demand. 6. Energy pragmatism, not ideology Oil. Gas. Solar. Nuclear. Wind. Use everything. Cheap power = economic resilience. Expensive power = recession. The largest investor on Earth just told you exactly where the money is going. AI infrastructure demand is real and accelerating. Only constrained by power.

@sfultong @avsa @VictorTaelin That's the right question

@avsa @VictorTaelin What size/quant?

GPT-5.4: trustworthy math genius, autistic Opus-4.6: charismatic, gets things done, cheats on you Gemini-3.1: walking encyclopedia, licks your boots pick your poison

Dennis Ritchie created C in the early 1970s without Google, Stack Overflow, GitHub, or any AI ( Claude, Cursor, Codex) assistant. - No VC funding. - No viral launch. - No TED talk. - Just two engineers at Bell Labs. A terminal. And a problem to solve. He built a language that fit in kilobytes. 50 years later, it runs everything. Linux kernel. Windows. macOS. Every iPhone. Every Android. NASA’s deep space probes. The International Space Station. > Python borrowed from it. > Java borrowed from it. > JavaScript borrowed from it. If you have ever written a single line of code in any language, you did it in Dennis Ritchie’s shadow. He died in 2011. The same week as Steve Jobs. Jobs got the front pages. Ritchie got silence. This Legend deserves to be celebrated.

That's the kind of thing that happen when you spend $50M without using @1inch protection and added liquidity. If you want to avoid expensive mistakes, contact our team of professionals.

@brave Releasing Brave as a native browser for Linux Phones like FLX1s from FuriLabs would be the best thing you can do. Otherwise I don't believe Google would be pressured in any way

Keep Android open! Brave is joining the EFF, the Tor Project and 40+ other organizations in opposing Google's proposed Android developer registry. Here's why we're taking this stand...

@heynavtoor "Pair it with Tor Browser and a VPN" Pairing both is a bad security practice...

🚨 Someone built a full virtual computer that runs inside your browser. No downloads. No installs. No VMs. Just a Docker command. It's called Neko. It runs a complete desktop environment inside a Docker container and streams it to your browser using WebRTC. Not a screen share. Not a remote desktop. A real computer running in a container that you control from any browser tab. No VNC lag. No RDP setup. No TeamViewer watermarks. Just smooth, real-time video and audio. Here's what this thing can do: → Run Firefox, Chrome, Brave, Edge, Tor Browser, or Opera in an isolated container → Run full desktop environments like XFCE or KDE → Multiple users can watch and control the same session simultaneously → Built-in audio streaming. Watch videos together with perfect sync → Persistent sessions. Close the tab, come back later, everything is still there → GPU acceleration for smooth rendering → Embed it in your own web app via API Here's why people are losing their minds over this: Watch parties. Open a movie, invite friends, everyone sees the same screen in real-time with synced audio. Open source alternative to Hyperbeam. Throwaway browsing. Need to visit a sketchy site? Do it in a disposable container. Nothing touches your real machine. Pair it with Tor Browser and a VPN for full anonymity. Team collaboration. Debug code together. Brainstorm on a shared whiteboard. Give a live demo where your audience can actually click around. Secure jump host. Access internal company apps from anywhere without a VPN. Only video leaves the container. No cookies, no tokens, no data on the client. Here's the wildest part: The backstory. The creator built this because rabb.it shut down and he just wanted to watch anime with his friends. Discord kept crashing. His internet couldn't handle streaming. So he built an entire virtual browser platform from scratch. One Docker command to start: docker run -d -p 8080:8080 m1k1o/neko:firefox Open localhost:8080. You now have a full browser running in the cloud that anyone can join. 17.3K GitHub stars. 1.2K forks. 2,133 commits. 57 contributors. 100% Open Source. Apache 2.0 License.

@Evolutionspiri @zoecyber001 RISC-V CPUs are pretty usable nowadays for laptops/desktop. I expect performance to go parabolic in following years.

@zoecyber001 Tired of Intel ME & AMD PSP lurking below your OS,Go RISC-V – open architecture, no hidden backdoors.Milk-V Titan (Mini-ITX, 8-core UltraRISC, PCIe x16, up to 64GB ECC RAM) & DeepComputing DC-ROMA RISC-V AI PC (Framework-compatible, up to 50 TOPS AI, SiFive P550 cores)

You're an admin on your machine, but you're still a guest in its house. A lot of people still think Ring 0 (the Kernel) is the absolute ceiling of authority. If you have root, you have God mode, right? For cracked people(not one though), they know the real power lives in Ring -3. There is a separate, invisible processor inside your Intel CPU running its own closed-source operating system usually a version of MINIX. This is the Intel Management Engine (ME). It doesn’t matter if your PC is off, your drive is encrypted with AES-256, or you’re running the most hardened Linux distro. If the power cable is plugged in, the ME is awake. Why this is the ultimate Deep Tech secret: The Ghost in the Silicon: It has its own independent network stack. It can bypass your OS-level firewall to send and receive data. It can see your RAM, your screen, and every single keystroke you type before your OS even knows they happened. The Kill Switch Irony: The only reason we know how to soft-disable this is because the NSA requested a way to turn it off for their own high-security machines. It’s called the HAP (High Assurance Platform) bit. Even the guys who do the spying didn't trust a black-box OS living inside their silicon. Modern Vulnerabilities: This isn't old news. Research from 2025 (like CVE-2025-20037) shows that we're still finding TOCTOU (Time-of-check-to-time-of-use) race conditions in the CSME firmware. These aren't just bugs; they're architectural blind spots. If you try to just delete the ME firmware, yep, your computer will literally commit suicide (shut down) every 30 minutes. That’s a hardcoded failsafe. To truly neuter it, you have to use tools like me_cleaner to strip the modules while leaving just enough code (like the BUP/ROMP modules) to keep the CPU from panicking. We spend our lives as architects designing secure systems, but we’re building on top of a foundation we aren't allowed to audit. Digital sovereignty is a nice idea, but until you control the hardware below the BIOS, you're just renting your privacy. would make a follow-up post on how to actually use me_cleaner without bricking your board

At ThinkerFriends, we design private infrastructure for companies that want full control over their data.

Dominating the Real Estate Skyline: Strategic SEO in Costa Rica - ThinkerFriends thinkerfriends.com/project/domina…

@matteodotsui @anglio Real Facts - FTX crying for regulator to help and crashed few months after - Scammers scamming around no problem - But LBRY, one of the very few projects in the space that actually isn't a scam (and it's very obvious it's not one) got a huge fine from Garry Gensler and shat down

@anglio This is facts Ever since the “crypto president” took over, this shit space has turned into the Wild West where scammers and manipulators roam free and unpunished #BringBackGensler

Crypto went to shit when we lost this guy No way this guy would let CZ and Binance walk free after 10/10 Miss you big dog

@NEfuGnH @DeviousPL @cqcqcqdx This is normal speed for SATA SSDs

Well they were real enough for me to be able to check and update their firmware with Kingston SSD Manager. Some of them gave a good 470 mb/s while WD gave around 540 mb/s. I was able to RMA maybe 6. But then the rest started to fail and I really needed my server to be fast and reliable so I said fuck it all and bought the 16 WD Red.

So this 2-TB SSD died and case was opened. Overview: The image shows the internal components of what appears to be a fake, low-capacity USB drive housed in a large case, often marketed fraudulently as a high-capacity (e.g., 2TB) external SSD or hard drive. The device uses a tiny, low-capacity flash storage chip soldered to a small circuit board, which is a common scam tactic. The firmware is often modified ("spoofed") to report a much higher, fake storage capacity to the computer. The large, mostly empty case is used to deceive buyers into thinking it contains substantial internal components like a full-sized hard drive. These products are typically of poor quality and prone to failure, often overwriting data when their actual small capacity is reached.