I'd have gone with "Every web browser is Mozilla", personally, but yes.

If you're using a user agent for any sort of security purpose, you're not just doing security wrong; you're doing security so wrong that somebody is going to write an entire book as a postmortem about your company.

Moreover, if your service can't handle the traffic of a mere thousands of clients (four-digit QPS) hitting it at once, you have much bigger problems than security. I forgot how to count that low a long time ago.

Finally, the elephant in this room is that those "unauthorized" clients are YOUR USERS. They are people who bought YOUR HARDWARE and want to use it with your service. Basically, you're flipping off your paying customers. That's the fastest, easiest way to ensure that you don't have any of those anymore.

Already done. When I was choosing what 3D printer to buy to replace my aging Snapmaker A350 last year, I read about Bambu's questionable commitment to openness, and decided to buy a Creality printer (K2 Plus with CFS) instead. Over the year that followed, I bought a Creality Hi with CFS as a second printer, plus two additional CFS units, a filament dryer, a spare Creality tool kit (since the Hi doesn't come with one), and more than half a grand worth of filament.

I've personally spent well close to $3,700 on Creality products in the last year (not counting third-party filament and the DXC2 extruder upgrade) precisely because Bambu comes across as being a bunch of litigious a**holes who are trying to lock down their products and prevent users from being able to modify the hardware that they bought.

As far as I'm concerned, they've dug their grave in the 3D printer market. Stick a fork in it. They're done.

They've had 22 years to figure this out, but now it's a crisis requiring a rush mission because nobody thought it was important enough to do something a year ago, or five, or ten.

The sticky note under the keyboard or in a desk drawer is actually pretty secure. Most attacks are remote, they've no way to read that note. The social-engineering attacks don't target people who'd go to your desk either, they either target you directly (you already know your password) or support people who don't need to know your password to give them access.

There would be some perverse irony if Apple ended up manufacturing cellular baseband hardware with designs from the cellular modem team that they bought from Intel, and did so using Intel's foundries.

It's a good idea in principle. If Intel can actually catch up. Otherwise, it will be like the cellular modems, where Apple second-sourced from Intel, and the product was crap, so some devices had noticeably degraded performance compared with the ones that contained Qualcomm radios.

Except that they would have to presumably reengineer the old silicon for Intel's process, which kind of defeats the purpose of reusing old designs to save money, I would think.

I think you're on the right track with that one. Apple uses a lot of CPUs that aren't the main CPU. For example, every current MacBook Pro has a T2 security chip that handles encryption. The next generation of that could be designed to be manufacturable on multiple processes; it is currently built on a 16nm process.

Apple also uses CPUs in things like the Apple Watch, where absolute performance isn't as much of a factor as temperature and power consumption. I'm pretty sure Intel is already able to make chips in volume that beat the 4nm process that they use for those.

I have to ask, are these platforms even trying to secure their systems anymore? Because I keep seeing of more and more of these breaches, involving more and more platforms, and the attacks are less and less sophisticated. I hear companies talk and talk about security, yet their day-to-day practices require their employees and contractors to violate practically every good security practice and treat the red flags of an attack as normal company practice instead.

Occam's Razor no longer applies, because at this level malice and incompetence are indistinguishable.

Which one? .gov or .com?

Kids clearly learned this sort of behavior from cartoons. We must BAN CARTOONS! Won't someone think of the children?

No, I'm not serious, and the fact that I'm having to say that tells you pretty much everything you need to know about how utterly stupid all of this is becoming.

If the U.S. can do that, they can put drones in the air and create a Starlink-based swarm network providing free Wi-Fi to everyone, replacing the hardware as it gets shot down. Nobody has to have the Starlink hardware if it is a few hundred feet up — complete anonymity and complete destruction of the government's Internet blackout.

But corporations are not people. Corporations exist at the mercy and whims of the state. And corporations have to tell who they paid money and for what.

If you make it illegal for corporations to pay ransoms to the tune of "If you get caught, your corporate charter is revoked," it won't make more people criminals; it will make it nearly impossible for corporations to pay ransoms without the corporation ceasing to exist, which would make paying the ransom entirely moot.

But for it to work, the cost of getting caught and the odds of getting caught would both have to be high enough to exceed the cost of throwing out all the affected equipment and rebuilding from off-site backups (or starting over from scratch). Otherwise, they'll just pay the ransom.

You mean like... cellular signals? :-)

Car manufacturer CEOs have to eat. Do you hate car manufacturer CEOs? :-D

Not legally. Class 3 is already capped at 28 MPH. We don't need a new law to prevent them from going highway speeds. The existing laws already do.

This isn't really a new result, nor tied to genAI. Machine-learning models have a long track record of being able to identify medical problems better than humans based on records. Not really a surprise, the problem is essentially one of pattern matching and machine learning is _really_ good at extracting patterns from large volumes of data and then matching new data against those patterns. I wouldn't apply genAI to the problem, though, the established ML systems do a better job using fewer resources.