banner
LightNews
beny23.github.io
Gerald Benischke
@beny23.github.io
2.9K followers 880 following 940 posts
Maker, breaker and fixer of software. Adventures in #appsec and #agile: beny23.github.io he/him
Posts Media Videos Starter Packs
beny23.github.io
Gerald Benischke @beny23.github.io · 3h
Meh, viewpoints 20 years out of date will just prepare them for the realities in the commercial sector ;-)
2
beny23.github.io
Gerald Benischke @beny23.github.io · 12h
I’m sure it’ll buff out youtube.com/shorts/yVmet...
Vietnamese #miners cleaning their old #gpus. Pay attention when #buying on second hand market!
YouTube video by CRSTNBENCH
youtube.com
1
beny23.github.io
Gerald Benischke @beny23.github.io · 15h
Great open source supply chain retro. Fondly (erm, not really) remember many of those!
filippo.abyssdomain.expert
Filippo Valsorda @filippo.abyssdomain.expert · 1d
To implement robust mitigations across Geomys, I did a survey of open source project compromises in 2024/2025.

Three root causes dominate: phishing, control handoff, and unsafe GitHub Actions triggers. All three can be systematically avoided.

words.filippo.io/compromise-s...
A Retrospective Survey of 2024/2025 Open Source Supply Chain Compromises
Project compromises have common root causes we can mitigate: phishing, control handoff, and unsafe GitHub Actions triggers.
words.filippo.io
beny23.github.io
Gerald Benischke @beny23.github.io · 15h
Just like all the crypto mining infrastructure was reused. Wait what? ;-)
Image of burnt out bitcoin mining farm
1
Reposted by Gerald Benischke
robbowley.net
Rob Bowley @robbowley.net · 17h
Some people are saying the potential overbuild because of AI might not be a bad thing because, like the dotcom era, it could leave behind infrastructure we’ll benefit from for a long time.

1/6
1 6 3
Reposted by Gerald Benischke
robbowley.net
Rob Bowley @robbowley.net · 18h
BBC News - 'It's going to be really bad': Fears over AI bubble bursting grow in Silicon Valley
A tangled web of deals stokes AI bubble fears in Silicon Valley
Some are worried that the rapid rise in the value of AI tech companies may be a bubble waiting to burst.
www.bbc.com
4 4 7
beny23.github.io
Gerald Benischke @beny23.github.io · 17h
It might work for us meme with text: DOT COM WAS A BUBBLE SUBPRIME WAS A BUBBLE BUT AI DEFINITELY ISN'T
1
beny23.github.io
Gerald Benischke @beny23.github.io · 1d
So tariffs for Norway? www.bbc.co.uk/news/live/c1...
Nobel Peace Prize 2025 live updates: Venezuelan politician Maria Corina Machado wins
Nominations closed in January but US President Donald Trump had led a public campaign to win the award.
www.bbc.co.uk
1 2
Reposted by Gerald Benischke
junoryleejournalism.com
Juno Rylee Schultz @junoryleejournalism.com · 2d
David Simon, creator of ‘The Wire’, being interviewed by Ari Shapiro (NPR)
SHAPIRO: OK, so you've spent your career creating television without Al, and I could imagine today you thinking, boy, I wish I had had that tool to solve those thorny problems... SIMON: What? SHAPIRO: ...Or saying... SIMON: You imagine that? SHAPIRO: ...Boy, if that had existed, it would have screwed me over. SIMON: I don't think Al can remotely challenge what writers do at a fundamentally creative level. SHAPIRO: But if you're trying to transition from scene five to scene six, and you're stuck with that transition, you could imagine plugging that portion of the script into an Al and say, give me 10 ideas for how to transition this. SIMON: I'd rather put a gun in my mouth.
330 8.8K 28K
Reposted by Gerald Benischke
jjaron.bsky.social
Jacob Aron @jjaron.bsky.social · 3d
Honestly, when the financial press starts printing diagrams like this, isn't it time for a regulator to step in?
16 67 170
beny23.github.io
Gerald Benischke @beny23.github.io · 2d
Great write-up from @fly.io about how to get phished. fly.io/blog/kurt-go...
Kurt Got Got
The night we spent without control of our Twitter account.
fly.io
beny23.github.io
Gerald Benischke @beny23.github.io · 3d
Skynet will destroy western civilisation, just not in the way you thought…
theregister.com
The Register @theregister.com · 3d
Bank of England smells hint of dotcom bubble 2.0 in AI froth
Bank of England smells hint of dotcom bubble 2.0 in AI froth
UK central bank warns of 'sudden correction' in tech stocks The Bank of England's Financial Policy Committee has warned of the dangers of a sudden correction in the financial markets, owing to the value of tech and AI stocks, and has compared the risks to the dotcom bubble.…
dlvr.it
1
beny23.github.io
Gerald Benischke @beny23.github.io · 3d
Redis steady cooked… www.wiz.io/blog/wiz-res...
Wiz Finds Critical Redis RCE Vulnerability: CVE‑2025‑49844 | Wiz Blog
A 13‑year Redis flaw (CVE‑2025‑49844) allows attackers to escape Lua sandbox and run code on hosts. See Wiz Research’s analysis and mitigations.
www.wiz.io
Reposted by Gerald Benischke
estherschindler.bsky.social
Esther Schindler @estherschindler.bsky.social · 5d
I just saw someone use the abbreviation “AI;DR” and I’ll be laughing for a while.
26 2.3K 7K
Reposted by Gerald Benischke
lookitup.baby
Ian Coldwater 👻🌿 @lookitup.baby · 5d
Seriously? This is ridiculous
carrion.bsky.social
carrion🐛 @carrion.bsky.social · 5d
just don’t create a moderation list, bluesky said that’s bad
10 41 270
beny23.github.io
Gerald Benischke @beny23.github.io · 5d
Meanwhile in Redmond:

“Challenge accepted”
abeba.bsky.social
Dr Abeba Birhane @abeba.bsky.social · 5d
why is msft teams sooooo bad. they couldn’t have built a worse product if they tried
1
Reposted by Gerald Benischke
meemalee.bsky.social
MiMi Aye @meemalee.bsky.social · 7d
Author and filmmaker Justine Bateman on generative AI
"They're trying to convince people they can't do the things they've been doing easily for years - to write emails, to write a presentation. Your daughter wants you to make up a bedtime story about puppies - to write that for you." We will get to the point, she says with a grim laugh, "that you will essentially become just a skin bag of organs and bones, nothing else. You won't know anything and you will be told repeatedly that you can't do it, which is the opposite of what life has to offer. Capitulating all kinds of decisions like where to go on vacation, what to wear today, who to date, what to eat. People are already doing this. You won't have to process grief, because you'll have uploaded photos and voice messages from your mother who just died, and then she can talk to you via AI video call every day. One of the ways it's going to destroy humans, long before there's a nuclear disaster, is going to be the emotional hollowing-out of people." - author and filmmaker Justine Bateman from a piece by Emine Saner for the Guardian
20 1.8K 3.9K
Reposted by Gerald Benischke
mistyksnow.bsky.social
Misty K Snow @mistyksnow.bsky.social · 7d
Age verification is great at keeping people safe... NOT!
Discord customer service data breach leaks user info and scanned photo IDs
An “unauthorized party” may have accessed the names of users, the last four digits of credit card numbers, and more.
www.theverge.com
1 31 55
Reposted by Gerald Benischke
jasongorman.bsky.social
Jason Gorman @jasongorman.bsky.social · 7d
4 factors that are reasonably good predictors of which code is likely to break:

1. Complexity (more to go wrong)

2. Coupling (greater risk of breaking changes)

3. Change (the more often code changes, the great the risk)

4. Test Assurance - how thoroughly and how often it's being tested)

(1/3)
5 4 17
Reposted by Gerald Benischke
malwaretech.com
Marcus Hutchins @malwaretech.com · 8d
I think the important historic context about Bluesky is while it's seen as a safe space for people who fled Elon-Twitter, it was not designed to be that. It was a misguided side-project created by the previous Twitter CEO (Jack Dorsey) after he learned zero lessons from what happened to Twitter. 1/?
5 33 150
beny23.github.io
Gerald Benischke @beny23.github.io · 8d
I love this: github.com/jmsdnns/webbol a cobol web server!!!
GitHub - jmsdnns/webbol: A minimal static web server written in COBOL
A minimal static web server written in COBOL. Contribute to jmsdnns/webbol development by creating an account on GitHub.
github.com
1
beny23.github.io
Gerald Benischke @beny23.github.io · 9d
Always have been!
1 1
Reposted by Gerald Benischke
amberying.com
Amber Ying 應 緣 @amberying.com · 10d
okay i laughed

source: www.smbc-comics.com/comic/autism...
Single-panel comic: Two people are talking to each other. In the foreground is a person with glasses who says, "Wait a minute. Autism-spectrum people are over-represented in research science. But... But that means.." The second person in the background with curly black hair says, "My God..." The caption reads, "AUTISM CAUSES VACCINES."
5 170 720
beny23.github.io
Gerald Benischke @beny23.github.io · 10d
Schrödinger’s security: Until you look inside you can pretend it might be ok…

Am I doing quantum right?
11
Reposted by Gerald Benischke
doublepulsar.com
Kevin Beaumont @doublepulsar.com · 10d
A part of the cause here is operationally - orgs cover up their incidents.

Hire external IR through legal council, don’t tell regulators, put threat intel in TLP wrappers etc.

My entire career has been moving between orgs and knowing all their problems day one. Because they’re all the same.
1 4 44