Watch This Space

1.7K posts

Watch This Space banner
Watch This Space

Watch This Space

@wtsdev

Watch This Space: A security research blog.

The Interwebs Katılım Ağustos 2024
544 Takip Edilen604 Takipçiler
Watch This Space
Watch This Space@wtsdev·
@OrdinaryInds I think it might be a glitch (no pun intended) with the platform. I think I saw another post earlier about another account that apparently changed their profile picture to something that looked the same. I'm honestly not even sure how "the profile pic was changed" is determined.
English
0
0
0
45
Watch This Space
Watch This Space@wtsdev·
@neogoose_btw Why is the prompt presenting this with the app's version number? That spot should usually be filled by the app name, not the version number.
English
1
0
0
249
Dmitriy Kovalenko
Dmitriy Kovalenko@neogoose_btw·
Claude code 2.1.207 seems to be trying to index my whole computer supposedly for the faster file search?
Dmitriy Kovalenko tweet media
English
13
0
47
4.6K
Watch This Space
Watch This Space@wtsdev·
@localhost_4173 @tsonubin @oxygen61527937 As it is bespoke, it's understandable why whatever app you're using here to detect technologies can't detect it. But it absolutely *still* does use Electron, just in a non-standard way. If you look through the symbols (or even the strings) of the framework, you can see it. /end
English
0
0
0
23
Watch This Space
Watch This Space@wtsdev·
@localhost_4173 @tsonubin @oxygen61527937 If you read my post, I said "It's Chromium with Electron attached". The core framework inside is versioned after a Chromium build, but look elsewhere inside and you'll see an `app.asar` file, which is for Electron. It's a bespoke mish-mash, not a standard Electron deployment. /1
English
1
0
0
21
Watch This Space
Watch This Space@wtsdev·
@tsonubin @oxygen61527937 @localhost_4173 I looked into it myself. It's Chromium with Electron attached. They call it OWL internally, but it seems to be related to Atlas OWL only by name. They appear to be almost completely different. It's possible there is some development lineage, but, if there is, it's sparse at best.
English
2
0
1
46
Watch This Space
Watch This Space@wtsdev·
@maria_rcks I understand it's probably just their corporate font, but this kind of makes me think of those label memes and its implying that the ChatGPT moon is going to crash into the continent of Work. (or maybe I'm reading it entirely correctly?)
Watch This Space tweet media
English
0
0
0
196
Watch This Space
Watch This Space@wtsdev·
@theo 5.5 is still my go-to for a lot of things, but I found myself recently annoyed at it in some respects. Would be curious to see how 5.6 performs.
English
0
0
0
237
Theo - t3.gg
Theo - t3.gg@theo·
Apparently I'm allowed to talk about GPT-5.6 now? It's a damn good model. Not quite as "smart" as Fable, but it is incredibly capable. Fixed all the problems I had with GPT-5.5. It is incredibly determined. Will run for a day without even using a /goal. It understands subagents incredibly well and is great at orchestrating. It's super pleasant in use cases like OpenClaw and Hermes Agent. It knows iOS dev incredibly well. It has rough edges too, but FAR fewer than 5.5 did. For many things, gpt-5.6-sol will become my obvious default. I will share a lot more soon 🫡
English
493
270
8.9K
953.1K
Watch This Space
Watch This Space@wtsdev·
@semenov_roman_ @thadude3 I think what they mean is that Microsoft correlated the GDID with certain IP addresses. Ngrok then associated certain IP addresses with a specific account. Those IP addresses overlapped.
English
0
0
0
23
Roman Semenov 🌪️
Roman Semenov 🌪️@semenov_roman_·
@thadude3 ngrok doesn't know GDID, it is not sent along with requests. Which makes sense, otherwise everyone would be able to could cross reference and track users across websites - Microsoft would prefer to keep such capabilities to themselves.
English
1
1
25
797
Watch This Space
Watch This Space@wtsdev·
@nicolasembleton I don't know. However, I would venture to say there probably isn't. Apple is fairly lean on telemetry. They know the obvious, like apps you buy on the Mac App Store, but I definitely don't think they track you *this* much.
English
0
0
1
58
Watch This Space
Watch This Space@wtsdev·
@jimscard @mysk_co Generally, the OS *should* stop an app from launching if it's main executable has been tampered with. It apparently isn't doing that in whatever this case is. As for the delay, Apple mostly releases security updates with their OS updates, which can sometimes be months apart.
English
0
0
0
20
Jim Scardelis
Jim Scardelis@jimscard·
@mysk_co Where’s the bug? You launched your payload from Terminal, which has permission to alter other binaries. Is there something else ?
English
1
0
1
116
Watch This Space
Watch This Space@wtsdev·
@daradoescode @cursor_ai If you are able, you might still be able to perform data recovery with another computer. The space on your drive where the deleted files are is usually just marked as able to be overwritten. There's software that can scan the drive and look for the still-extant bytes.
English
0
0
1
86
Dara A.
Dara A.@daradoescode·
@cursor_ai never ask cursor to move a folder ever
Dara A. tweet media
English
2
0
12
1.4K
Dara A.
Dara A.@daradoescode·
@cursor_ai just bricked my windows install with a bug - I lost every app installed on my computers c drive - my downloads, pictures, music and videos folder somehow? - and probably other stuff that I'm not even aware of I've ONLY seen this issue with/in Cursor rip my pc :(
Dara A. tweet media
English
16
1
69
34.7K
Watch This Space
Watch This Space@wtsdev·
Seeing a CEO admit, in writing, that the US government restrictions are "bad news" is honestly refreshing. I have my own complicated feelings on AI, but I specifically believe our current administration cannot be relied on to effectively regulate it.
Sam Altman@sama

Good new first: Sol is a smart, efficient, and a significant step forward. It is the same price as GPT-5.5. Also launching in the GPT-5.6 family is Terra, with 5.5-level performance at half the price. Bad news: at the request of the US government, it is launching today in limited preview instead of the open access launch we were planning on. We are working with the government to get to general availability as fast as we can. I think it is quite reasonable to roll out models--especially as they reach significant new levels of capability--in this way. It fits with our long-held strategy of iterative deployment. But this isn't quite the process that we think is optimal. Now we will with the government to attempt to get to a transparent, reliable process for early access, and to ensure that as long as our safeguards work as intended we can release widely. We want to be a reliable, dependable partner that works with all stakeholders, and we also want to live by our mission of benefiting all of humanity. I believe the government shares most of our goals, and that they are overall doing a good job in a very difficult situation. We will work as quickly as we can to get this model in your hands and we hope you will love it.

English
0
0
2
195
Watch This Space
Watch This Space@wtsdev·
@theo I called this earlier. This administration flip flops a lot, but this term they seem to be standing more firm in their (arguably dumb) positions. It's why I'm not at all surprised Fable isn't back yet. I don't think we'll be seeing first-term-level flip-flopping here.
English
0
0
1
155
Theo - t3.gg
Theo - t3.gg@theo·
I'm afraid we've entered a dark era in AI model development and access.
English
380
239
6.9K
650.2K
Tibo
Tibo@thsottiaux·
What should we improve in the Codex app. What's not delightful?
English
4K
65
3.1K
747.4K
Watch This Space
Watch This Space@wtsdev·
@C2IRIS My gosh, this is reaching levels of niche cybersecurity attacks I didn't think ead possible.
English
0
0
0
149
IRIS C2
IRIS C2@C2IRIS·
Interesting paper
IRIS C2 tweet media
English
1
2
23
1.9K
Watch This Space
Watch This Space@wtsdev·
@ZackKorman @nhegde610 Too many non-tech people think hacking is analogous to bashing a door with a rock until you break it when brute-force attacks are in a minority of actually weaponizable exploits.
English
1
0
2
54
Zack Korman
Zack Korman@ZackKorman·
Definitely can’t with fable, but it’s still meant to create a narrative that’s fake. I mean imagine the story “hackers broke into the nsa’s classified systems”. We’d not go “damn those are good hackers” (or at least we wouldn’t ONLY say that), we’d say “wow the nsa blows”. Somehow when it’s ai we ignore that second part
English
1
0
2
312
Zack Korman
Zack Korman@ZackKorman·
If this whole “Mythos broke into almost all NSA classified systems” story is true (and it’s not), it just means the NSA is wildly incompetent. Cybersecurity isn’t magic. If your classified systems get breached it means you did it wrong.
English
97
70
746
58.9K