Parodia
  • Communities
  • Multi-communities
  • Support Lemmy
  • Search
  • Login
  • Sign Up
Technology@lemmy.mlby☆ Yσɠƚԋσʂ ☆@lemmy.ml
4 days

China Has Matched Anthropic in Cybersecurity, Resetting AI Race

www.wsj.com English

https://archive.is/sQvr0

52
    You must log in or register to comment.

    • mabeledo@lemmy.world
      3 days

      Finding the bugs was never the benchmark, exploiting them is.

        • ☆ Yσɠƚԋσʂ ☆@lemmy.ml
          3 days

          Finding them is a prerequisite to exploiting them, and by far the hardest part. Once you know what the exploit is, abusing it is not difficult.

            • TrippinMallard@lemmy.ml
              3 days

              Depends on the exploit. Sometimes it requires physical access to a port with contacts hidden under conformal coating that damages when removed.

                • ☆ Yσɠƚԋσʂ ☆@lemmy.ml
                  3 days

                  The context here is obviously software exploits given that we’re talking about LLM finding them.

                    • TrippinMallard@lemmy.ml
                      3 days

                      That was not obvious to me. LLMs have been used for finding hardware, firmware, RF, software, and social exploits.

                      RAM side-channel attacks are a good example of software exploits that are harder to exploit than find the vulnerability.

                        • ☆ Yσɠƚԋσʂ ☆@lemmy.ml
                          3 days

                          Sure, you can do all that as well, but the context is an article about cyber security.

                            • TrippinMallard@lemmy.ml
                              3 days

                              Cybersecurity includes finding hardware, firmware, RF, software, and social exploits.

                                • ☆ Yσɠƚԋσʂ ☆@lemmy.ml
                                  2 days

                                  Again, I’m not disagreeing that you can use LLMs to audit all these things. All I’m saying is that software is by far the easiest place to apply models and actually try out exploits end to end.

                        • mabeledo@lemmy.world
                          3 days

                          deleted by creator

                            • ☆ Yσɠƚԋσʂ ☆@lemmy.ml
                              3 days

                              You’re entitled to your opinion, but finding vulnerabilities goes far beyond simply doing static analysis. LLMs are able to find vulnerabilities that emerge from subtle interactions between different features, where things like keys and security credentials aren’t handled properly, and finding these by hand in a large codebase is nearly impossible.

                              The very process of finding these vulnerabilities gives you a path towards making an exploit. And the LLM can actually do this laborious process largely autonomously as well. It can probe a site for example, look at the results, and iterate on them. It’s an incredibly effective tool for both finding exploits and testing them out in the wild.

                              In fact, you can ask piefed devs about their recent security debacle that an LLM exposed and gave a step by step guide for exploiting.

                                • mabeledo@lemmy.world
                                  3 days

                                  deleted by creator

                                    • ☆ Yσɠƚԋσʂ ☆@lemmy.ml
                                      3 days

                                      And I gave you a concrete example of how LLMs both find and exploit these vulnerabilities. It’s quite evident that your disagreement stems from not having actually used these tools to find vulnerabilities.

                                        • mabeledo@lemmy.world
                                          3 days

                                          deleted by creator

                                            • ☆ Yσɠƚԋσʂ ☆@lemmy.ml
                                              3 days

                                              Yes, quite extensively in fact. That’s how I found a massive security hole in piefed that I mentioned earlier in fact.

                                • i_am_not_a_robot@discuss.tchncs.deEnglish
                                  4 days

                                  The US government cut off access to Mythos because Anthropic marketing claims it’s so powerful that it could be misused. If China has a better system, doesn’t that obligate companies that believe the marketing to use the Chinese system to find vulnerabilities in their software before somebody else does?

                                    • iocase@lemmy.zip
                                      4 days

                                      We live in a post-truth post-logic post-reason era.

                                      What ever makes the line go up more. That’s the answer.

                                      • ☆ Yσɠƚԋσʂ ☆@lemmy.ml
                                        4 days

                                        logically it would, wouldn’t it

                                      • MrSoup@lemmy.zip
                                        4 days

                                        z.ai screenshot of question about Tiananment square

                                        It stops here.

                                          • ghost_laptop@lemmy.ml
                                            4 days

                                            how is this relevant to the post you rabid orientalist dog? your people are only filled with hate, you’re disgusting

                                              • MrSoup@lemmy.zip
                                                4 days

                                                Chill out man, you don’t even know me and you are talking shit about me. I’m no “orientalist dog” and I don’t know who you are referring to with “your people”.

                                                I’m simply showing an interesting inner-analysis the LLM do when talking about censored stuff. It is always fun to try LLMs limits an see what have been censored and here there is also an inner reasoning which is cut-off.

                                                Learn respect and how to talk to people before making stupid assumptions.

                                                  • davel@lemmy.mlEnglish
                                                    4 days

                                                    Previously:

                                                    Are you also going to claim that DeepSeek isn’t censored?

                                                    You can download DeepSeek and run it yourself to get uncensored answers.

                                                    Large Language Models (LLMs) are not truth machines. They are garbage in, garbage out. The input to English-language models are largely English-language texts from Five Eyes countries, with all the disinformation and bias that that entails. So the DeepSeek company is in a “damned if you do, damned if you don’t” situation. They can either refuse to answer certain questions, in which case Western media will accuse them of censorship; or they can answer them, in which case (a) their model will perpetuate Cold War I & Cold War II falsehoods and (b) Western media will parade those false answers around in a victory lap. They chose the former for the cloud version of their app, and the latter for the local version.

                                                      • MrSoup@lemmy.zip
                                                        4 days

                                                        I’m aware of open weights and yes, it is clearly a server-side block (since the text generation is cut-off). If I’m not wrong it was DeepSeek I tried (long time ago) locally offline and it was willing to talk even about this type of topics.

                                                  • ☆ Yσɠƚԋσʂ ☆@lemmy.ml
                                                    4 days

                                                    I love how you chuds are still butthurt that your color revolution failed. 🤣

                                                      • brucethemoose@lemmy.world
                                                        3 days

                                                        I guess that’s why they literally need to censor the topic from the model UI?

                                                        The knowledge is in the open weights, though, at least for older GLM releases.

                                                        • MrSoup@lemmy.zip
                                                          4 days

                                                          W-what? Color revolution?

                                                            • davel@lemmy.mlEnglish
                                                              4 days

                                                              Previously. We’ve covered this dozens of times. I’m surprised that you’re surprised given that your account is over two years old.

                                                                • MrSoup@lemmy.zip
                                                                  4 days

                                                                  I’m sorry, this link doesn’t work:

                                                                  The server returned this error: Error.

                                                                    • davel@lemmy.mlEnglish
                                                                      4 days

                                                                      Oh, sorry. The poster deleted their post which broke the link to the comment. Copypasta:


                                                                      Would you class the western oppression of dissent to be on the same level as that famous student protest in China?

                                                                      Only someone misinformed about the 1989 protest and US/CIA/NED-orchestrated, murderously violent riot would ask this, which to be fair is 99% of Westerners.

                                                                      • 📺 The Tiananmen Square “Massacre” Never Happened: part 1, part 2, part 3 — [Sources]
                                                                        • Edit to add: YouTube took the original video down for “violating YouTube’s terms of service,” but I found a reploaded a copy, splitting it up into three pieces. This is why you don’t know what really happened, because Western corporate media don’t want you to know. They were reuploaded just today; who knows how long they’ll stay up.
                                                                      • The Tian’anmen Square ‘Massacre’: The West’s Most Persuasive, Most Pervasive Lie.
                                                                      • CBS, 1989: There Was No “Tiananmen Square Massacre”
                                                                      • Images from Tiananmen 1989 the West never shows (NSFW / CW: violence and death)
                                                                      • Tank Man video footage. Tiananmen Square, Beijing, 1989
                                                                      • How psy-ops warriors fooled me about Tiananmen Square: a warning
                                                                      • 1989 Tian’anmen Square riots
                                                                      • A Note on the Tiananmen Protests
                                                                      • Washington Post, 1989: Rebel Without a Magazine

                                                                        [Chinese Intellectual’s founder] Liang [Heng] had come from his New York office, where he serves as the magazine’s foreign editor, to Washington Thursday and Friday to address the board of directors at the National Endowment for Democracy – a substantial financial backer of the magazine – to tell it what he knows, what he thinks and what will possibly happen. After his arrival in the United States, he earned his master’s degree in literature from Columbia University and secured an initial $200,000 grant from the NED, a private corporation created in 1983 to “strengthen democratic efforts worldwide,” to start his magazine.

                                                                      • The Seattle Times, 2011: Quiet scholar who inspired uprisings

                                                                        That is not to say [Gene] Sharp has not seen any action. In 1989, he jetted off to China to witness the uprising in Tiananmen Square. In the early 1990s, he sneaked into a Myanmar rebel camp at the invitation of Robert Helvey, a retired Army colonel who advised the opposition there. They met when Helvey was on a fellowship at Harvard; the military man thought the professor had ideas that could avoid war.

                                                                      • The blueprint of regime change operations - How regime change happens in the 21st century with your consent
                                                                        • MrSoup@lemmy.zip
                                                                          4 days

                                                                          Those YouTube links don’t work anymore and in its patreon are not present (at least without paying).

                                                                          Though it was an interesting read (of the working links).

                                                                            • davel@lemmy.mlEnglish
                                                                              4 days

                                                                              It’s an old post. I know the Reddit link is broken because Reddit banned & censored r/TheDeprogram. Reddit censoring socialists is why Lemmy was created in the first place: https://en.prolewiki.org/wiki/Lemmy#Formation

                                                                      • ☆ Yσɠƚԋσʂ ☆@lemmy.ml
                                                                        4 days

                                                                        ^ how to say you’re an ignoramus without saying it

                                                                          • MrSoup@lemmy.zip
                                                                            4 days

                                                                            I know what you are talking about, I’m just confused why did you say it. Purely out of context and not respectful.

                                                                            While I was showing a screenshot of the inner-reasoning behind a censor, you start talking about me being some type of politically stressed when I don’t give a heck about your “colors”. Just chill and stop randomly attack people you don’t even know who are and what thinks.

                                                                              • ☆ Yσɠƚԋσʂ ☆@lemmy.ml
                                                                                4 days

                                                                                If you knew what I was talking about then there would be nothing to be confused about. If you don’t know what a color revolution is or the history of the US trying to overthrow the government in China, then spend the time to educate yourself instead of clowning around on here. Here’s some reading you can start with in fact:

                                                                                • https://web.archive.org/web/20230508214030/https://mango-press.com/the-tiananmen-square-massacre-the-wests-most-persuasive-most-pervasive-lie/
                                                                                • https://worldaffairs.blog/2019/06/02/tiananmen-square-massacre-facts-fiction-and-propaganda/
                                                                                  • MrSoup@lemmy.zip
                                                                                    4 days

                                                                                    Please stop. Go touch grass. I don’t care about your doctrine and what’s inside your brain. What I shared has nothing to do about your provocatory comment. I will no further answer to your disrespectful provocations.

                                                                                    Have a nice day.

                                                                                      • ☆ Yσɠƚԋσʂ ☆@lemmy.ml
                                                                                        4 days

                                                                                        Go home clown.

                                                                          Technology@lemmy.ml

                                                                          technology@lemmy.ml

                                                                          Subscribe from remote instance

                                                                          Create post

                                                                          Report community

                                                                          Modlog
                                                                          You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !technology@lemmy.ml

                                                                          This is the official technology community of Lemmy.ml for all news related to creation and use of technology, and to facilitate civil, meaningful discussion around it.


                                                                          Ask in DM before posting product reviews or ads. All such posts otherwise are subject to removal.


                                                                          Rules:

                                                                          1: All Lemmy rules apply

                                                                          2: Do not post low effort posts

                                                                          3: NEVER post naziped*gore stuff

                                                                          4: Always post article URLs or their archived version URLs as sources, NOT screenshots. Help the blind users.

                                                                          5: personal rants of Big Tech CEOs like Elon Musk are unwelcome (does not include posts about their companies affecting wide range of people)

                                                                          6: no advertisement posts unless verified as legitimate and non-exploitative/non-consumerist

                                                                          7: crypto related posts, unless essential, are disallowed

                                                                          Visibility: Public

                                                                          This community is visible to everyone.

                                                                          • 99 users / Day
                                                                          • 568 users / Week
                                                                          • 663 users / Month
                                                                          • 676 users / 6 months
                                                                          • 94 posts
                                                                          • 261 comments
                                                                          • 1 local subscriber
                                                                          • 42.9K subscribers
                                                                          • BE: 1.0.0-beta.0
                                                                          • Modlog
                                                                          • Legal
                                                                          • Instances
                                                                          • Docs
                                                                          • Code
                                                                          • join-lemmy.org