Feed aggregator

Article URL: https://aisecuritygateway.ai/ai-leak-checker

Comments URL: https://news.ycombinator.com/item?id=48115158

Points: 2

# Comments: 0

Article URL: https://drewdevault.com/blog/Cult-of-TDD-and-LLMs/

Comments URL: https://news.ycombinator.com/item?id=48115151

Points: 2

# Comments: 0

Your Rivian can now manage your calendar, warm your passengers' seats and text your ETA -- all without even looking at the screen.

Article URL: https://www.fastcompany.com/91356468/how-aohell-presaged-the-age-of-computer-insecurity

Comments URL: https://news.ycombinator.com/item?id=48115130

Points: 2

# Comments: 0

Article URL: https://github.com/FULU-Foundation/OrcaSlicer-bambulab

Comments URL: https://news.ycombinator.com/item?id=48115127

Points: 3

# Comments: 1

Article URL: https://www.dogvida.net

Comments URL: https://news.ycombinator.com/item?id=48115119

Points: 1

# Comments: 0

Article URL: https://www.pinecone.io/research/Nearly-Optimal-Attention-Coresets/

Comments URL: https://news.ycombinator.com/item?id=48115096

Points: 1

# Comments: 0

Famous for helping build Apple's iPhones, Foxconn just suffered another cyberattack, highlighting the perils of warehousing some of the world's most valuable data.

Article URL: https://www.youtube.com/watch?v=D_FCYsshMI4

Comments URL: https://news.ycombinator.com/item?id=48115090

Points: 3

# Comments: 2

Article URL: https://dubeykartikay.com/posts/the-shape-of-duplicate-detection/

Comments URL: https://news.ycombinator.com/item?id=48115089

Points: 1

# Comments: 0

Article URL: https://www.eff.org/deeplinks/2026/05/eff-fourth-circuit-electronic-device-searches-border-require-warrant

Comments URL: https://news.ycombinator.com/item?id=48115059

Points: 1

# Comments: 1

Article URL: https://www.youtube.com/watch?v=lA8WuXDXfcI

Comments URL: https://news.ycombinator.com/item?id=48115047

Points: 2

# Comments: 0

Artificial intelligence platforms may be just as susceptible to social engineering as human beings, but they are proving remarkably good at finding security vulnerabilities in human-made computer code. That reality is on full display this month with some of the more widely-used software makers — including Apple, Google, Microsoft, Mozilla and Oracle — fixing near record volumes of security bugs, and/or quickening the tempo of their patch releases.

As it does on the second Tuesday of every month, Microsoft today released software updates to address at least 118 security vulnerabilities in its various Windows operating systems and other products. Remarkably, this is the first Patch Tuesday in nearly two years that Microsoft is not shipping any fixes to deal with emergency zero-day flaws that are already being exploited. Nor have any of the flaws fixed today been previously disclosed (potentially giving attackers a heads up in how to exploit the weakness).

Sixteen of the vulnerabilities earned Microsoft’s most-dire “critical” label, meaning malware or miscreants could abuse these bugs to seize remote control over a vulnerable Windows device with little or no help from the user. Rapid7 has done much of the heavy lifting in identifying some of the more concerning critical weaknesses this month, including:

• CVE-2026-41089: A critical stack-based buffer overflow in Windows Netlogon that offers an attacker SYSTEM privileges on the domain controller. No privileges or user interaction are required, and attack complexity is low. Patches are available for all versions of Windows Server from 2012 onwards.
• CVE-2026-41096: A critical RCE in the Windows DNS client implementation worthy of attention despite Microsoft assessing exploitation as less likely.
• CVE-2026-41103: A critical elevation of privilege vulnerability that allows an unauthorized attacker to impersonate an existing user by presenting forged credentials, thus bypassing Entra ID. Microsoft expects that exploitation is more likely.

May’s Patch Tuesday is a welcome respite from April, which saw Microsoft fix a near-record 167 security flaws. Microsoft was among a few dozen tech giants given access to a “Project Glasswing,” a much-hyped AI capability developed by Anthropic that appears quite effective at unearthing security vulnerabilities in code.

Apple, another early participant in Project Glasswing, typically fixes an average of 20 vulnerabilities each time it ships a security update for iOS devices, said Chris Goettl, vice president of product management at Ivanti. On May 11, Apple shipped iOS 15, which addressed at least 52 vulnerabilities and backported the changes all the way to iPhone 6s and iOS 15.

Last month, Mozilla released Firefox 150, which resolved a whopping 271 vulnerabilities that were reportedly discovered during the Glasswing evaluation.

“Since Firefox 150.0.0 released, they have been on a more aggressive weekly cadence for security updates including the release of Firefox 150.0.3 on May Patch Tuesday resolving between three to five CVEs in each release,” Goettl said.

The software giant Oracle likewise recently increased its patch pace in response to their work with Glasswing. In its most recent quarterly patch update, Oracle addressed at least 450 flaws, including more than 300 fixes for remotely exploitable, unauthenticated flaws. But at the end of April, Oracle announced it was switching to a monthly update cycle for critical security issues.

On May 8, Google started rolling out updates to its Chrome browser that fixed an astonishing 127 security flaws (up from just 30 the previous month). Chrome automagically downloads available security updates, but installing them requires fully restarting the browser.

If you encounter any weirdness applying the updates from Microsoft or any other vendor mentioned here, feel free to sound off in the comments below. Meantime, if you haven’t backed up your data and/or drive lately, doing that before updating is generally sound advice. For a more granular look at the Microsoft updates released today, checkout this inventory by the SANS Internet Storm Center.

The California case involving a 19-year-old's death last year specifically calls for new safeguards around AI models' discussion of drug use.

The third entry in James Cameron's hit franchise is coming to streaming.

Marvel Cinematic Universe star Paul Bettany dropped the news on Tuesday and revealed a clip for the upcoming series.

Article URL: https://tryfractart.com/

Comments URL: https://news.ycombinator.com/item?id=48114688

Points: 1

# Comments: 0

Article URL: https://www.cremieux.xyz/p/do-teachers-need-advanced-degrees

Comments URL: https://news.ycombinator.com/item?id=48114673

Points: 2

# Comments: 0

I'm quite fond of obnoxious looking gifs in a post-ironic way as a manner of shitposting and or injecting humor into a chat. The issue with this however is that, for no real good reason at all, the simple usecase of "Have image/gif background, bombard with garbage" had no real good usecase.

There's gif editors out there, EZgif my beloved is probably my most used non-search-indexing-slash-social-media-site, but they're kinda clunky for my specific usecase of making digital eye-sandpaper bombastic garbage. Other options are bleak and gave me the mark of the beast via shitty watermarks. I just wanted a pile of gifs on top of eachother, and thus far the "easiest" way was to bust open a video editor, muck around with it, mess up exporting as a gif directly, get mad, export it as a 4 second mp4, and then use ffmpeg to get it working. is this probably moronic? yes. am I likely to have missed a decent tool? yes. Did I give up looking after sending 4 dollars to some Indian guy for "No watermarks ever for 4$", only for that "ever" to be a year, and then the clunky weird af login process not work? absolutely. (Fuck you, you know who you are)

This took me a few hours (most of which was dealing with the fact I don't do webshit normally and the clunk that one would expect from that), and is a minimal site for my personal minimal usecase. It's static because I'm not going to deal w/ hosting other people's shit and I don't want to deal with that can of worms. all processing is done locally on your browser. Yes, this means that using a 4k image as a base layer for your gif pile will make it take an age. It'll work eventually though.

This will never have a watermark unless I'm bought out (total investment thus far has been 14 bucks, 4 of which was that one dude fucking me), in which case I probably earned it. at most I'll likely throw adsense on there at some point to scrape a few cents from the people who can't figure out adblock if it gets popular enough for me to warrant it.

There's no timelines or anything like that. literally just a pile of gifs. thus far my primary usecase has been overlaying text gifs from the various fancy text generator sites onto glitter backgrounds with uncomfortable rat GIFs to call people poor on the internet. this makes me happy.

There's likely to be obvious UI, UX, or other U-whatever fuckups. If you point them out and I deem it pedantic I'll probably laugh at you. if it's helpful I'll probably implement it when I get a bit.

Surprisingly, works on mobile. CSS is exceedingly generic and souless atm, just went off vauge memories of ss13's TGUI. I'll likely scrap the CSS entirely and go full neocities at some point because that's more soulful.

Comments URL: https://news.ycombinator.com/item?id=48114649

Points: 1

# Comments: 0