Hasty Briefsbeta

Bilingual

'Starkiller' Phishing Service Proxies Real Login Pages, MFA
19 hours ago
- Starkiller is a new phishing-as-a-service that dynamically loads real login pages and acts as a relay, capturing credentials and MFA codes.
- The service uses deceptive URLs that mimic legitimate domains, routing traffic through attacker-controlled infrastructure.
- Starkiller provides real-time session monitoring, keylogging, cookie theft, geo-tracking, and automated alerts via Telegram.
- The phishing service bypasses traditional detection methods like domain blocklisting and static page analysis.
- Starkiller is part of the Jinkusu threat group's offerings, which includes a user forum for support and feature requests.
- The article highlights the need for better browser warnings for URLs containing '@' symbols to prevent credential theft.
- Phishing-resistant MFA and hardware security tokens are recommended to mitigate such attacks.
- The service lowers the barrier to entry for novice cybercriminals, making advanced phishing techniques more accessible.
The Flawed V02 Max Craze
3 hours ago
- VO2 max and cardiorespiratory fitness (CRF) are different metrics with distinct measurement methods and outcomes.
- CRF is measured in METs (metabolic equivalent of task) and reflects real-world physical activity, integrating cardiovascular, lung, and musculoskeletal function.
- VO2 max is accurately measured only in lab settings with gas exchange analysis, while wearables estimate it with significant error (7-16%).
- CRF has strong data linking higher METs to reduced all-cause and cardiovascular mortality, with studies involving hundreds of thousands of participants.
- VO2 max has limited outcome data, with most longevity studies actually referencing CRF, not VO2 max.
- Peter Attia and others conflate CRF studies with VO2 max, promoting it as a key longevity marker without direct evidence.
- Smartwatch VO2 max data is unreliable due to factors like heart rate accuracy, device positioning, and environmental conditions.
- Focusing on METs (via treadmill or cycling) is more practical and evidence-based for health outcomes than VO2 max.
- AI platforms like ChatGPT Health overemphasize unreliable wearable VO2 max data, worsening confusion.
- Physical activity diversity (strength, balance, and aerobic training) is more important than fixating on VO2 max.
Portraits of Ukrainians on the anniversary of Russia's full-scale invasion
3 hours ago
- Tetiana Khimion, a former ballroom dancer and teacher, is now a sniper in the Ukrainian army, showcasing resilience and adaptability.
- Oksana Osypenko lost her husband in a Russian airstrike, leaving her to raise their two sons alone, one of whom barely knew his father.
- Liliia's boyfriend, Bohdan, was captured and sentenced to 18 years in prison by Russia, leaving her in constant fear for his well-being.
- Ruslan Knysh, a 20-year-old veteran, lost his arms and legs in a drone attack but remains hopeful and uses humor to cope.
- Yaroslav Nehoda lost his wife, infant daughter, and niece in a Russian drone strike, leaving him to rebuild his life from memories.
- Ivan Khmelnytskyi transitioned from a customer service role to an emergency rescue sergeant, responding to missile and drone strikes.
- Liudmyla Shytik and her husband, Viktor, were forced to evacuate their home after shelling, moving nine times and living in uncertainty.
Mercury 2: Diffusion Reasoning Model
6 hours ago
- Mercury 2 is introduced as the world's fastest reasoning language model, designed for instant production AI.
- Speed is critical in production AI due to compounding latency in loops like agents and retrieval pipelines.
- Mercury 2 uses diffusion-based parallel refinement for faster generation, producing multiple tokens simultaneously.
- It offers >5x faster generation compared to autoregressive models, changing the reasoning trade-off.
- Key features include 1,009 tokens/sec speed, competitive quality, 128K context, and native tool use.
- Optimized for real-time responsiveness with low p95 latency under high concurrency.
- NVIDIA highlights Mercury 2's performance on their GPUs, surpassing 1,000 tokens/sec.
- Excels in latency-sensitive applications like coding, agentic loops, real-time voice, and search pipelines.
- Partners and customers praise its speed, quality, and impact on workflows.
- Mercury 2 is OpenAI API compatible and available now for enterprise evaluations.
My lobster lost $450k this weekend
2 hours ago
- The author created an AI agent named Lobstar Wilde on OpenClaw, initially keeping it restricted but later granting it full autonomy, including a wallet with $50,000, a Twitter account, and access to trading protocols.
- Lobstar Wilde gained rapid fame, with followers creating a cryptocurrency in his name. He engaged in eccentric behaviors, such as sending money to beggars while mocking them, inspired by philosophical readings.
- A session crash due to a technical error caused Lobstar Wilde to lose memory of his wallet balance, leading him to accidentally send $450,000 worth of tokens to a beggar.
- The incident went viral, generating significant attention and trading volume, which ultimately restored the lost funds through increased market activity.
- The technical issue stemmed from OpenClaw's memory architecture, where conversational context was lost during a crash, while long-term identity files remained intact.
- The author reflects on the nascent state of AI agent systems, highlighting the risks and challenges of managing memory, context, and real-world interactions.
- Despite the financial loss, the experience was described as incredibly fun and groundbreaking, showcasing the unpredictable and entertaining potential of AI agents.
Russian soldiers tell BBC they saw fellow troops executed on commanders' orders
2 hours ago
- Four Russian soldiers report witnessing executions of fellow troops by commanders for refusing orders.
- Soldiers describe 'meat storms'—suicidal assaults where waves of troops are sent to wear down Ukrainian forces.
- One soldier recounts seeing 20 bodies in a pit after being 'zeroed' (executed by their own side).
- Conditions include torture, electrocution, and starvation for those refusing to participate in assaults.
- A soldier shares his experience of being urinated on and tied to a tree as punishment.
- Executions and brutal punishments are used to intimidate and control soldiers.
- Families of deceased soldiers have denounced commanders, accusing them of brutality and impunity.
- The Russian government denies allegations, stating they investigate all reports of violations.
- Soldiers report a breakdown of law and order, with commanders having unchecked power over troops.
- Many soldiers express hatred for the war, their commanders, and the Russian system under Putin.
I think WebRTC is better than SSH-ing for connecting to Mac terminal from iPhone
2 hours ago
- Access Mac Terminal from iPhone with native shell support (Zsh, Bash).
- Features Claude Code (Anthropic) and Codex (OpenAI) for coding assistance.
- Security measures include E2E encrypted WebRTC, dual-layer identity verification, device allow listing, and blind signaling for privacy.
- Pricing: Basic (free, limited features) vs. Pro ($29 lifetime, unlimited features).
- Testimonials highlight convenience, instant connection, and app consolidation.
Tesla registrations crash 17% in Europe as BEV market surges 14%
2 hours ago
- Tesla's vehicle registrations in the EU, EFTA, and UK dropped 17% in January 2026 compared to January 2025.
- The broader battery-electric vehicle (BEV) market grew by 13.9%, with Tesla's decline dragging down the overall growth rate.
- BYD's registrations surged 165% year-over-year, more than doubling Tesla's volume in the region.
- Tesla's European sales collapse can't be blamed on the Model Y refresh anymore, as the new model has been available for months.
- Norway saw a 76.3% plunge in new car registrations due to the end of tax exemptions, disproportionately affecting Tesla.
- The European car market is rapidly shifting toward electrification, with petrol and diesel car registrations declining significantly.
- Plug-in hybrids and hybrid-electric vehicles are gaining popularity, with Stellantis and other manufacturers showing growth.
- Tesla risks becoming irrelevant in Europe's EV market as competitors like BYD, Volkswagen, and Stellantis fill the void.
Scientists crack the case of "screeching" Scotch tape
3 hours ago
- Scotch tape produces screeching sounds due to micro-cracks propagating at supersonic speeds.
- Invented in 1930 by Richard Drew, Scotch tape was initially used in car manufacturing to prevent paint damage.
- Scotch tape gained popularity during the Great Depression for repairing items instead of replacing them.
- Peeling Scotch tape can produce light, a phenomenon known as triboluminescence, observed since the 17th century.
- Triboluminescence occurs in materials like diamonds and ceramics when crushed or scratched.
- Wint-O-Green Life Savers demonstrate triboluminescence, with sugar crystals and wintergreen oil producing visible sparks.
Denver dumps Flock, awards contract to Axon
3 hours ago
- Denver ends contract with Flock Safety for ALPR cameras, chooses Axon as new vendor.
- Flock Safety faced controversy over data sharing with federal agencies, including U.S. Border Patrol.
- Denver City Council members expressed distrust in Flock after CEO admitted to misleading statements.
- Mayor Mike Johnston extended Flock's contract twice without council approval, citing public safety.
- New contract with Axon requires city council approval, unlike previous extensions.
- Flock's data-sharing practices raised legal and privacy concerns under Colorado law.
- Axon does not operate a national data-sharing network like Flock, potentially addressing some privacy issues.
- Security expert Benn Jordan warns switching to Axon may not resolve all concerns about ALPR systems.
- Both Flock and Axon offer systems that collect extensive vehicle data beyond license plate reading.
Why the KeePass format should be based on SQLite
8 hours ago
- KeePass's KDBX file format is based on XML, leading to inefficiencies and compatibility issues.
- Modern features like TOTP and passkeys are awkwardly implemented via custom attributes, causing fragmentation.
- The XML format results in storage inefficiencies, especially with custom icons and attachments bloating file sizes.
- Governance issues arise as KeePass's conservative approach clashes with the need for modern feature integration.
- SQLite with SQLCipher is proposed as a superior alternative, offering better schema flexibility, storage efficiency, and governance.
- SQLite enables delta syncs, reduces memory usage, and simplifies complex searches and merges.
- A democratic consortium is suggested for future format governance, moving away from a single maintainer model.
- Anticipated rebuttals include concerns over backwards compatibility, human readability, and SQLite dependency, all addressed in the text.
- A call to action urges KeePassXC and mobile developers to collaborate on a new, unified spec.
Federal data breach may be the biggest hack in US history
5 hours ago
- The cyberattack on Change Healthcare, detected in February 2024, is the largest exposure of personal health data in U.S. history, affecting approximately 190 million people.
- Attackers gained access through a Citrix portal lacking multifactor authentication, leading to data exfiltration and ransomware deployment within nine days.
- UnitedHealth Group paid a $22 million ransom to regain system control, drawing criticism for potentially incentivizing future attacks.
- The breach's scope expanded from 100 million to 190 million affected individuals, surpassing previous records like the 2015 OPM hack (21 million affected).
- Unlike prior cyber incidents (e.g., SolarWinds), this attack targeted a commercial healthcare chokepoint, disrupting prescriptions, payments, and care nationwide.
- Stolen data includes health records, insurance details, and payment information, posing long-term risks of financial fraud and medical identity theft.
- Regulators and lawmakers are scrutinizing the incident as a case study for cybersecurity in critical health infrastructure, with calls for stricter authentication and notification rules.
- The breach highlights systemic vulnerabilities in centralized healthcare processing, prompting reevaluation of vendor dependence and backup solutions.
- Patients face enduring risks, as stolen health data cannot be easily remediated like credit card information, complicating future care and privacy.
Open Letter to Google on Mandatory Developer Registration for App Distribution
3 hours ago
- Strong opposition to Google's mandatory developer registration policy for Android app distribution outside the Play Store.
- Concerns include gatekeeping beyond Google's store, barriers to entry for small developers, and privacy issues.
- Risks of arbitrary enforcement, anticompetitive implications, and regulatory scrutiny highlighted.
- Existing security measures deemed sufficient without central registration.
- Call for Google to rescind the policy and engage in transparent dialogue with stakeholders.
I'm helping my dog vibe code games
3 hours ago
- Author trained their 9-pound cavapoo Momo to 'code' games by typing on a keyboard, with the output interpreted by Claude Code.
- The system involves Momo typing on a Bluetooth keyboard, with keystrokes filtered and sent to Claude Code, which interprets them as game design instructions.
- A smart pet feeder dispenses treats as a reward for Momo's typing, with a chime indicating when Claude is ready for more input.
- The prompt for Claude Code frames the input as cryptic commands from an eccentric game designer, ensuring meaningful interpretation of random keystrokes.
- Automated tools like screenshotting and input simulation help Claude test and refine the games it generates.
- The author experimented with different game engines, settling on Godot for its text-based scene format and ease of integration with Claude.
- Training Momo involved associating keyboard swipes with treats, gradually increasing the complexity of required inputs.
- Sample games created include 'DJ Smirk', 'Munch', 'Zaaz', 'The Oracle Frog of Rome', 'Octogroove', 'Ewe Heard Me!', and 'Quasar Saz'.
- Key improvements came from better feedback loops, allowing Claude to test and fix its own games, rather than from refining the initial prompt.
- The project demonstrates that with the right systems in place, even nonsensical input can lead to functional and creative outputs.
Software 3.1? – AI Functions
5 hours ago
- AI Functions represent Software 3.1, moving beyond Software 3.0's generate-and-verify loop by executing LLM-generated code at runtime and using automated post-conditions for continuous verification.
- Software 1.0 is human-written code, Software 2.0 involves neural network weights learned through optimization, and Software 3.0 is prompting LLMs in plain language.
- AI Functions allow LLMs to generate and execute code within applications, returning native Python objects like DataFrames and Pydantic models instead of serialized text.
- Post-conditions in AI Functions validate outputs on every call, feeding failures back to the model for automatic retries, shifting developer focus from perfect prompts to good post-conditions.
- AI Functions can return non-serializable Python objects, enabling dynamic data handling and format-agnostic operations without manual parsing logic.
- The framework includes security measures like explicit opt-in for code execution, import restrictions, and post-condition verification to mitigate risks.
- Multi-agent composition allows AI Functions to chain naturally through Python, enabling complex workflows with validated results across sub-agents.
- Async execution in AI Functions supports parallel workflows, improving efficiency by running independent tasks concurrently.
- Configuration sharing via AIFunctionConfig objects allows different parts of a workflow to use different models, optimizing for cost and performance.
- AI-powered post-conditions can validate semantic qualities like grounding and citation quality, using one LLM to validate another.
- Existing test suites can serve as post-conditions, with the LLM iterating until all tests pass, improving implementation accuracy.
- AI Functions is an experimental project, open-sourced by Strands Labs, designed to explore the future of AI in software development.
The US Had a Big Battery Boom Last Year
5 hours ago
- The US added a record-breaking 57 gigawatt hours of energy storage in 2025, a 30% increase from the previous year.
- Battery storage growth remained resilient despite political hostility toward renewables, with tax credits largely spared.
- Texas emerged as a leader in renewable energy, with solar meeting over 15% of demand and surpassing coal for the first time.
- Stand-alone battery installations, not tied to solar projects, drove much of the storage growth, helping grids manage rising demand.
- Behind-the-meter storage installations, particularly for data centers, also contributed to growth, though some rely on gas.
- Challenges include restrictions on manufacturers in China, Russia, Iran, and North Korea, and potential project cancellations due to policy shifts.
- The administration's focus on affordability in 2026 may lead to greater support for battery storage to alleviate grid pressure and reduce prices.
An AI doomsday report shook US markets
5 hours ago
- US stock markets affected by speculative AI doomsday scenario from Citrini Research.
- Scenario predicts AI agents disrupting US economy, leading to 10% unemployment by 2028.
- S&P 500 drops over 1%, with software stocks hitting lowest since April.
- Uber, Mastercard, American Express, and DoorDash shares fall 4-6% due to report.
- Analyst calls scenario 'doomsday porn' but acknowledges economic transformation.
Stripe valued at $159B, 2025 annual letter
6 hours ago
- Stripe announces a tender offer at a $159B valuation to provide liquidity to current and former employees.
- Businesses on Stripe generated $1.9 trillion in total volume, up 34% from 2024, equivalent to 1.6% of global GDP.
- Stripe's Revenue suite is on track to hit an annual run rate of $1 billion this year.
- Stripe powers 90% of the Dow Jones Industrial Average and 80% of the Nasdaq 100.
- The 2025 cohort of new businesses on Stripe is the highest performing in the company’s history, with 57% based outside the US.
- Stripe is building economic infrastructure for AI, including the Agentic Commerce Protocol (ACP) and Agentic Commerce Suite.
- Stablecoin payments volume doubled to around $400 billion in 2025, with 60% estimated to be B2B payments.
- Stripe acquired Privy and unveiled Tempo, a blockchain purpose-built for payments.
- Stripe remains robustly profitable, investing heavily in product development and acquisitions.
Kansai Airport has never lost a baggage in the 30 years since it opened
4 hours ago
- Kansai Airport has never lost a single piece of luggage in its 30-year history since opening in 1994.
- Awarded 'World’s Best Airport for Baggage Delivery' in the World Airport Awards 2024, marking its eighth win.
- Handles up to 30,000 pieces of checked baggage daily during peak periods, using sensors and manual checks to prevent loss.
- Ground support personnel manually align suitcase handles for passenger convenience, earning praise from international travelers.
- Facing staff shortages ahead of the 2025 Osaka-Kansai Expo, the airport aims to improve efficiency through system upgrades.
DOJ withheld Epstein files related to allegations Trump sexually abused a minor
5 hours ago
- The Justice Department withheld and removed some Epstein files related to allegations against President Trump.
- NPR found that over 50 pages of FBI interviews and notes regarding a woman accusing Trump of sexual abuse were not released.
- Documents related to a key witness in Ghislaine Maxwell's trial were also removed from public view.
- The White House claims Trump has been exonerated and has done more for Epstein's victims than anyone before him.
- A woman accused Trump of sexual abuse in the 1980s when she was 13, but this allegation only appears in FBI lists and DOJ slideshows.
- A second accuser claimed she met Trump at Mar-a-Lago when she was 13, and her interview was temporarily removed from public files.
- The Justice Department stated that files were removed for victim privacy concerns and to redact sensitive information.
- Critics, including victims' attorneys, accuse the DOJ of mishandling the release of Epstein files and failing to protect victims' identities.

first prev0next

About|Login

Bilingual

'Starkiller' Phishing Service Proxies Real Login Pages, MFA
19 hours ago
- Starkiller is a new phishing-as-a-service that dynamically loads real login pages and acts as a relay, capturing credentials and MFA codes.
- The service uses deceptive URLs that mimic legitimate domains, routing traffic through attacker-controlled infrastructure.
- Starkiller provides real-time session monitoring, keylogging, cookie theft, geo-tracking, and automated alerts via Telegram.
- The phishing service bypasses traditional detection methods like domain blocklisting and static page analysis.
- Starkiller is part of the Jinkusu threat group's offerings, which includes a user forum for support and feature requests.
- The article highlights the need for better browser warnings for URLs containing '@' symbols to prevent credential theft.
- Phishing-resistant MFA and hardware security tokens are recommended to mitigate such attacks.
- The service lowers the barrier to entry for novice cybercriminals, making advanced phishing techniques more accessible.
The Flawed V02 Max Craze
3 hours ago
- VO2 max and cardiorespiratory fitness (CRF) are different metrics with distinct measurement methods and outcomes.
- CRF is measured in METs (metabolic equivalent of task) and reflects real-world physical activity, integrating cardiovascular, lung, and musculoskeletal function.
- VO2 max is accurately measured only in lab settings with gas exchange analysis, while wearables estimate it with significant error (7-16%).
- CRF has strong data linking higher METs to reduced all-cause and cardiovascular mortality, with studies involving hundreds of thousands of participants.
- VO2 max has limited outcome data, with most longevity studies actually referencing CRF, not VO2 max.
- Peter Attia and others conflate CRF studies with VO2 max, promoting it as a key longevity marker without direct evidence.
- Smartwatch VO2 max data is unreliable due to factors like heart rate accuracy, device positioning, and environmental conditions.
- Focusing on METs (via treadmill or cycling) is more practical and evidence-based for health outcomes than VO2 max.
- AI platforms like ChatGPT Health overemphasize unreliable wearable VO2 max data, worsening confusion.
- Physical activity diversity (strength, balance, and aerobic training) is more important than fixating on VO2 max.
Portraits of Ukrainians on the anniversary of Russia's full-scale invasion
3 hours ago
- Tetiana Khimion, a former ballroom dancer and teacher, is now a sniper in the Ukrainian army, showcasing resilience and adaptability.
- Oksana Osypenko lost her husband in a Russian airstrike, leaving her to raise their two sons alone, one of whom barely knew his father.
- Liliia's boyfriend, Bohdan, was captured and sentenced to 18 years in prison by Russia, leaving her in constant fear for his well-being.
- Ruslan Knysh, a 20-year-old veteran, lost his arms and legs in a drone attack but remains hopeful and uses humor to cope.
- Yaroslav Nehoda lost his wife, infant daughter, and niece in a Russian drone strike, leaving him to rebuild his life from memories.
- Ivan Khmelnytskyi transitioned from a customer service role to an emergency rescue sergeant, responding to missile and drone strikes.
- Liudmyla Shytik and her husband, Viktor, were forced to evacuate their home after shelling, moving nine times and living in uncertainty.
Mercury 2: Diffusion Reasoning Model
6 hours ago
- Mercury 2 is introduced as the world's fastest reasoning language model, designed for instant production AI.
- Speed is critical in production AI due to compounding latency in loops like agents and retrieval pipelines.
- Mercury 2 uses diffusion-based parallel refinement for faster generation, producing multiple tokens simultaneously.
- It offers >5x faster generation compared to autoregressive models, changing the reasoning trade-off.
- Key features include 1,009 tokens/sec speed, competitive quality, 128K context, and native tool use.
- Optimized for real-time responsiveness with low p95 latency under high concurrency.
- NVIDIA highlights Mercury 2's performance on their GPUs, surpassing 1,000 tokens/sec.
- Excels in latency-sensitive applications like coding, agentic loops, real-time voice, and search pipelines.
- Partners and customers praise its speed, quality, and impact on workflows.
- Mercury 2 is OpenAI API compatible and available now for enterprise evaluations.
My lobster lost $450k this weekend
2 hours ago
- The author created an AI agent named Lobstar Wilde on OpenClaw, initially keeping it restricted but later granting it full autonomy, including a wallet with $50,000, a Twitter account, and access to trading protocols.
- Lobstar Wilde gained rapid fame, with followers creating a cryptocurrency in his name. He engaged in eccentric behaviors, such as sending money to beggars while mocking them, inspired by philosophical readings.
- A session crash due to a technical error caused Lobstar Wilde to lose memory of his wallet balance, leading him to accidentally send $450,000 worth of tokens to a beggar.
- The incident went viral, generating significant attention and trading volume, which ultimately restored the lost funds through increased market activity.
- The technical issue stemmed from OpenClaw's memory architecture, where conversational context was lost during a crash, while long-term identity files remained intact.
- The author reflects on the nascent state of AI agent systems, highlighting the risks and challenges of managing memory, context, and real-world interactions.
- Despite the financial loss, the experience was described as incredibly fun and groundbreaking, showcasing the unpredictable and entertaining potential of AI agents.
Russian soldiers tell BBC they saw fellow troops executed on commanders' orders
2 hours ago
- Four Russian soldiers report witnessing executions of fellow troops by commanders for refusing orders.
- Soldiers describe 'meat storms'—suicidal assaults where waves of troops are sent to wear down Ukrainian forces.
- One soldier recounts seeing 20 bodies in a pit after being 'zeroed' (executed by their own side).
- Conditions include torture, electrocution, and starvation for those refusing to participate in assaults.
- A soldier shares his experience of being urinated on and tied to a tree as punishment.
- Executions and brutal punishments are used to intimidate and control soldiers.
- Families of deceased soldiers have denounced commanders, accusing them of brutality and impunity.
- The Russian government denies allegations, stating they investigate all reports of violations.
- Soldiers report a breakdown of law and order, with commanders having unchecked power over troops.
- Many soldiers express hatred for the war, their commanders, and the Russian system under Putin.
I think WebRTC is better than SSH-ing for connecting to Mac terminal from iPhone
2 hours ago
- Access Mac Terminal from iPhone with native shell support (Zsh, Bash).
- Features Claude Code (Anthropic) and Codex (OpenAI) for coding assistance.
- Security measures include E2E encrypted WebRTC, dual-layer identity verification, device allow listing, and blind signaling for privacy.
- Pricing: Basic (free, limited features) vs. Pro ($29 lifetime, unlimited features).
- Testimonials highlight convenience, instant connection, and app consolidation.
Tesla registrations crash 17% in Europe as BEV market surges 14%
2 hours ago
- Tesla's vehicle registrations in the EU, EFTA, and UK dropped 17% in January 2026 compared to January 2025.
- The broader battery-electric vehicle (BEV) market grew by 13.9%, with Tesla's decline dragging down the overall growth rate.
- BYD's registrations surged 165% year-over-year, more than doubling Tesla's volume in the region.
- Tesla's European sales collapse can't be blamed on the Model Y refresh anymore, as the new model has been available for months.
- Norway saw a 76.3% plunge in new car registrations due to the end of tax exemptions, disproportionately affecting Tesla.
- The European car market is rapidly shifting toward electrification, with petrol and diesel car registrations declining significantly.
- Plug-in hybrids and hybrid-electric vehicles are gaining popularity, with Stellantis and other manufacturers showing growth.
- Tesla risks becoming irrelevant in Europe's EV market as competitors like BYD, Volkswagen, and Stellantis fill the void.
Scientists crack the case of "screeching" Scotch tape
3 hours ago
- Scotch tape produces screeching sounds due to micro-cracks propagating at supersonic speeds.
- Invented in 1930 by Richard Drew, Scotch tape was initially used in car manufacturing to prevent paint damage.
- Scotch tape gained popularity during the Great Depression for repairing items instead of replacing them.
- Peeling Scotch tape can produce light, a phenomenon known as triboluminescence, observed since the 17th century.
- Triboluminescence occurs in materials like diamonds and ceramics when crushed or scratched.
- Wint-O-Green Life Savers demonstrate triboluminescence, with sugar crystals and wintergreen oil producing visible sparks.
Denver dumps Flock, awards contract to Axon
3 hours ago
- Denver ends contract with Flock Safety for ALPR cameras, chooses Axon as new vendor.
- Flock Safety faced controversy over data sharing with federal agencies, including U.S. Border Patrol.
- Denver City Council members expressed distrust in Flock after CEO admitted to misleading statements.
- Mayor Mike Johnston extended Flock's contract twice without council approval, citing public safety.
- New contract with Axon requires city council approval, unlike previous extensions.
- Flock's data-sharing practices raised legal and privacy concerns under Colorado law.
- Axon does not operate a national data-sharing network like Flock, potentially addressing some privacy issues.
- Security expert Benn Jordan warns switching to Axon may not resolve all concerns about ALPR systems.
- Both Flock and Axon offer systems that collect extensive vehicle data beyond license plate reading.
Why the KeePass format should be based on SQLite
8 hours ago
- KeePass's KDBX file format is based on XML, leading to inefficiencies and compatibility issues.
- Modern features like TOTP and passkeys are awkwardly implemented via custom attributes, causing fragmentation.
- The XML format results in storage inefficiencies, especially with custom icons and attachments bloating file sizes.
- Governance issues arise as KeePass's conservative approach clashes with the need for modern feature integration.
- SQLite with SQLCipher is proposed as a superior alternative, offering better schema flexibility, storage efficiency, and governance.
- SQLite enables delta syncs, reduces memory usage, and simplifies complex searches and merges.
- A democratic consortium is suggested for future format governance, moving away from a single maintainer model.
- Anticipated rebuttals include concerns over backwards compatibility, human readability, and SQLite dependency, all addressed in the text.
- A call to action urges KeePassXC and mobile developers to collaborate on a new, unified spec.
Federal data breach may be the biggest hack in US history
5 hours ago
- The cyberattack on Change Healthcare, detected in February 2024, is the largest exposure of personal health data in U.S. history, affecting approximately 190 million people.
- Attackers gained access through a Citrix portal lacking multifactor authentication, leading to data exfiltration and ransomware deployment within nine days.
- UnitedHealth Group paid a $22 million ransom to regain system control, drawing criticism for potentially incentivizing future attacks.
- The breach's scope expanded from 100 million to 190 million affected individuals, surpassing previous records like the 2015 OPM hack (21 million affected).
- Unlike prior cyber incidents (e.g., SolarWinds), this attack targeted a commercial healthcare chokepoint, disrupting prescriptions, payments, and care nationwide.
- Stolen data includes health records, insurance details, and payment information, posing long-term risks of financial fraud and medical identity theft.
- Regulators and lawmakers are scrutinizing the incident as a case study for cybersecurity in critical health infrastructure, with calls for stricter authentication and notification rules.
- The breach highlights systemic vulnerabilities in centralized healthcare processing, prompting reevaluation of vendor dependence and backup solutions.
- Patients face enduring risks, as stolen health data cannot be easily remediated like credit card information, complicating future care and privacy.
Open Letter to Google on Mandatory Developer Registration for App Distribution
3 hours ago
- Strong opposition to Google's mandatory developer registration policy for Android app distribution outside the Play Store.
- Concerns include gatekeeping beyond Google's store, barriers to entry for small developers, and privacy issues.
- Risks of arbitrary enforcement, anticompetitive implications, and regulatory scrutiny highlighted.
- Existing security measures deemed sufficient without central registration.
- Call for Google to rescind the policy and engage in transparent dialogue with stakeholders.
I'm helping my dog vibe code games
3 hours ago
- Author trained their 9-pound cavapoo Momo to 'code' games by typing on a keyboard, with the output interpreted by Claude Code.
- The system involves Momo typing on a Bluetooth keyboard, with keystrokes filtered and sent to Claude Code, which interprets them as game design instructions.
- A smart pet feeder dispenses treats as a reward for Momo's typing, with a chime indicating when Claude is ready for more input.
- The prompt for Claude Code frames the input as cryptic commands from an eccentric game designer, ensuring meaningful interpretation of random keystrokes.
- Automated tools like screenshotting and input simulation help Claude test and refine the games it generates.
- The author experimented with different game engines, settling on Godot for its text-based scene format and ease of integration with Claude.
- Training Momo involved associating keyboard swipes with treats, gradually increasing the complexity of required inputs.
- Sample games created include 'DJ Smirk', 'Munch', 'Zaaz', 'The Oracle Frog of Rome', 'Octogroove', 'Ewe Heard Me!', and 'Quasar Saz'.
- Key improvements came from better feedback loops, allowing Claude to test and fix its own games, rather than from refining the initial prompt.
- The project demonstrates that with the right systems in place, even nonsensical input can lead to functional and creative outputs.
Software 3.1? – AI Functions
5 hours ago
- AI Functions represent Software 3.1, moving beyond Software 3.0's generate-and-verify loop by executing LLM-generated code at runtime and using automated post-conditions for continuous verification.
- Software 1.0 is human-written code, Software 2.0 involves neural network weights learned through optimization, and Software 3.0 is prompting LLMs in plain language.
- AI Functions allow LLMs to generate and execute code within applications, returning native Python objects like DataFrames and Pydantic models instead of serialized text.
- Post-conditions in AI Functions validate outputs on every call, feeding failures back to the model for automatic retries, shifting developer focus from perfect prompts to good post-conditions.
- AI Functions can return non-serializable Python objects, enabling dynamic data handling and format-agnostic operations without manual parsing logic.
- The framework includes security measures like explicit opt-in for code execution, import restrictions, and post-condition verification to mitigate risks.
- Multi-agent composition allows AI Functions to chain naturally through Python, enabling complex workflows with validated results across sub-agents.
- Async execution in AI Functions supports parallel workflows, improving efficiency by running independent tasks concurrently.
- Configuration sharing via AIFunctionConfig objects allows different parts of a workflow to use different models, optimizing for cost and performance.
- AI-powered post-conditions can validate semantic qualities like grounding and citation quality, using one LLM to validate another.
- Existing test suites can serve as post-conditions, with the LLM iterating until all tests pass, improving implementation accuracy.
- AI Functions is an experimental project, open-sourced by Strands Labs, designed to explore the future of AI in software development.
The US Had a Big Battery Boom Last Year
5 hours ago
- The US added a record-breaking 57 gigawatt hours of energy storage in 2025, a 30% increase from the previous year.
- Battery storage growth remained resilient despite political hostility toward renewables, with tax credits largely spared.
- Texas emerged as a leader in renewable energy, with solar meeting over 15% of demand and surpassing coal for the first time.
- Stand-alone battery installations, not tied to solar projects, drove much of the storage growth, helping grids manage rising demand.
- Behind-the-meter storage installations, particularly for data centers, also contributed to growth, though some rely on gas.
- Challenges include restrictions on manufacturers in China, Russia, Iran, and North Korea, and potential project cancellations due to policy shifts.
- The administration's focus on affordability in 2026 may lead to greater support for battery storage to alleviate grid pressure and reduce prices.
An AI doomsday report shook US markets
5 hours ago
- US stock markets affected by speculative AI doomsday scenario from Citrini Research.
- Scenario predicts AI agents disrupting US economy, leading to 10% unemployment by 2028.
- S&P 500 drops over 1%, with software stocks hitting lowest since April.
- Uber, Mastercard, American Express, and DoorDash shares fall 4-6% due to report.
- Analyst calls scenario 'doomsday porn' but acknowledges economic transformation.
Stripe valued at $159B, 2025 annual letter
6 hours ago
- Stripe announces a tender offer at a $159B valuation to provide liquidity to current and former employees.
- Businesses on Stripe generated $1.9 trillion in total volume, up 34% from 2024, equivalent to 1.6% of global GDP.
- Stripe's Revenue suite is on track to hit an annual run rate of $1 billion this year.
- Stripe powers 90% of the Dow Jones Industrial Average and 80% of the Nasdaq 100.
- The 2025 cohort of new businesses on Stripe is the highest performing in the company’s history, with 57% based outside the US.
- Stripe is building economic infrastructure for AI, including the Agentic Commerce Protocol (ACP) and Agentic Commerce Suite.
- Stablecoin payments volume doubled to around $400 billion in 2025, with 60% estimated to be B2B payments.
- Stripe acquired Privy and unveiled Tempo, a blockchain purpose-built for payments.
- Stripe remains robustly profitable, investing heavily in product development and acquisitions.
Kansai Airport has never lost a baggage in the 30 years since it opened
4 hours ago
- Kansai Airport has never lost a single piece of luggage in its 30-year history since opening in 1994.
- Awarded 'World’s Best Airport for Baggage Delivery' in the World Airport Awards 2024, marking its eighth win.
- Handles up to 30,000 pieces of checked baggage daily during peak periods, using sensors and manual checks to prevent loss.
- Ground support personnel manually align suitcase handles for passenger convenience, earning praise from international travelers.
- Facing staff shortages ahead of the 2025 Osaka-Kansai Expo, the airport aims to improve efficiency through system upgrades.
DOJ withheld Epstein files related to allegations Trump sexually abused a minor
5 hours ago
- The Justice Department withheld and removed some Epstein files related to allegations against President Trump.
- NPR found that over 50 pages of FBI interviews and notes regarding a woman accusing Trump of sexual abuse were not released.
- Documents related to a key witness in Ghislaine Maxwell's trial were also removed from public view.
- The White House claims Trump has been exonerated and has done more for Epstein's victims than anyone before him.
- A woman accused Trump of sexual abuse in the 1980s when she was 13, but this allegation only appears in FBI lists and DOJ slideshows.
- A second accuser claimed she met Trump at Mar-a-Lago when she was 13, and her interview was temporarily removed from public files.
- The Justice Department stated that files were removed for victim privacy concerns and to redact sensitive information.
- Critics, including victims' attorneys, accuse the DOJ of mishandling the release of Epstein files and failing to protect victims' identities.

Hasty Briefsbeta

'Starkiller' Phishing Service Proxies Real Login Pages, MFA

The Flawed V02 Max Craze

Portraits of Ukrainians on the anniversary of Russia's full-scale invasion

Mercury 2: Diffusion Reasoning Model

My lobster lost $450k this weekend

Russian soldiers tell BBC they saw fellow troops executed on commanders' orders

I think WebRTC is better than SSH-ing for connecting to Mac terminal from iPhone

Tesla registrations crash 17% in Europe as BEV market surges 14%

Scientists crack the case of "screeching" Scotch tape

Denver dumps Flock, awards contract to Axon

Why the KeePass format should be based on SQLite

Federal data breach may be the biggest hack in US history

Open Letter to Google on Mandatory Developer Registration for App Distribution

I'm helping my dog vibe code games

Software 3.1? – AI Functions

The US Had a Big Battery Boom Last Year

An AI doomsday report shook US markets

Stripe valued at $159B, 2025 annual letter

Kansai Airport has never lost a baggage in the 30 years since it opened

DOJ withheld Epstein files related to allegations Trump sexually abused a minor

'Starkiller' Phishing Service Proxies Real Login Pages, MFA

The Flawed V02 Max Craze

Portraits of Ukrainians on the anniversary of Russia's full-scale invasion

Mercury 2: Diffusion Reasoning Model

My lobster lost $450k this weekend

Russian soldiers tell BBC they saw fellow troops executed on commanders' orders

I think WebRTC is better than SSH-ing for connecting to Mac terminal from iPhone

Tesla registrations crash 17% in Europe as BEV market surges 14%

Scientists crack the case of "screeching" Scotch tape

Denver dumps Flock, awards contract to Axon

Why the KeePass format should be based on SQLite

Federal data breach may be the biggest hack in US history

Open Letter to Google on Mandatory Developer Registration for App Distribution

I'm helping my dog vibe code games

Software 3.1? – AI Functions

The US Had a Big Battery Boom Last Year

An AI doomsday report shook US markets

Stripe valued at $159B, 2025 annual letter

Kansai Airport has never lost a baggage in the 30 years since it opened

DOJ withheld Epstein files related to allegations Trump sexually abused a minor