Obviously the switch from "loss leader on a scale the capital markets can barely absorb" to "losing money" is going to sting; but I'm curious if we'll see sneakier knock-on effects.

So long as they were losing money hand over fist the vendor does want to throw enough tokens at you to make you feel like you are having a good time; but as few as are required to do that since they lose money on every one. If they were breaking even or turning a profit the incentive would be to sneak as much spend and upsell in as possible; and it's well known that the verbosity/cost of LLM chatter is hard to predict; harder if there are multiple models and other complications being switched around in the background.

What sort of exciting little tricks will we see from vendors who actually make more if you use more?

I was also thinking of https://xkcd.com/323/, specifically the part "You can't just give a team of coders a year's supply of whiskey", because that's what AI coding looks like to me. Instead of giving devs just enough rope to hang themselves, we're now giving dilettante coders the keys to the entire rope industry.

Everyone knows that 10x engineers validate inputs and carefully manage dependencies; so clearly there's no risk of unexpected behavior.

It seems worth noting that one of the items in Wyden's rather pointed inquiry is the fact that the feasibility of doing this is known to have been demonstrated for the DoD by outside people familiar with it at least as early as 2016; so while this is the first confirmed case of adversarial use it's the outcome of at least a decade of just ignoring the problem; and a significantly longer period of failing to reasonably anticipate the problem. It's not like there's No Such Agency you could ask about "how could you spy on someone with the internet even?" if you wanted to know how well or poorly readily available information matched a nation state signals intelligence apparatus.

Purely as a matter of cellphones being expensive and somewhat tepidly capable in the before times I assume that there was a period within living memory when merely telling people not to Gordon Gekko on their DynaTAC where the russians can hear you was good enough; but that would have clearly and rapidly been getting less true for at least a quarter century.

The whole 'responsible disclosure' preaching and the not-terribly-subtle threats seem particularly bad given that there's an entire industry of actively more dangerous people who are not only treated as legal but actively courted by state agents and cops(and often even less savory customers, though they tend to be cagey about those); the ones who actively seek to keep vulnerabilities quiet so that they can continue to sell exploit tools and services based on them. Throwing zero days on github isn't ideal vs. getting them fixed; but it gets them fixed faster than if Cellebrite wants to hang on to a bitlocker bypass or Trenchant, and L3Harris Technologies Company, wants to keep selling 'network investigative techniques' that can bypass default windows defender configurations or whatever the situation is.

From the outside it's hard to know whether MS actually mistreated the researcher badly enough to justify their displeasure(the consensus appears to be that MSRC was never the best to deal with and has actively gone downhill; but this person's position seems significantly angrier than average) or whether they are perhaps wound a little tight; but implying that their legal status is the same as people actively running attacks against user systems is blatantly false and totally ignores the class of researchers who do actively run attacks while being treated as respectable.

It's a particularly bad look when at least Facebook got into a public legal fight with the NSO group over their nerd-merc work against their users; not like that actually solved the problem of attacks on cellphones; but it was an all-too-rare case of industry pushing back against the 'respectable' arms dealers; and not one that MS has an analog to.

"I love this company" or "Developers, developers, developers, developers". https://www.youtube.com/watch?...

We'll all pretend that nuclear-tipped VCs will remain cool-headed and cooperative when the AI debts start to go sour.

The CIA has been doing nothing but making everything it touches turn to shit since the cold war. Just wipe the slate clean and start over.

I'm not an expert on rebuilding massively exploded launch infrastructure; but I have a suspicion that a 2026-2029 plan is now going to involve less Blue Origin than previously believed.

Oh, they know; it's more that you can't really put "fuck palantir!" in an encyclical; but you absolutely can choose which perfectly plausible catholic author to quote in your piece on how weaponized AI is bad; and going with Tolkien over the other options seems deliberate.

When "AI-enthused defense contractors with names out of Tolkien" are literally a genre I suspect that he chose that particular citation because he knew it would lead to a few amusing crashouts.

I want to eat human flesh, particularly humans whose names start with "dev" and end with "slash0". Do you have a problem with that? Because ain't nobody going to tell me what I should and should not eat.

In other words, I'm sick and tired of people who think their choice of food is only about their personal rights. The food always comes from somewhere. Most people don't go around robbing grocery stores just because they think they have a divine right to eat what they want.

One of the most toxic aspects of the broader linux community is a refusal to ever actually provide proper documentation or even fixes for tons of things and instead simply demanding people search through decades of obscure forum threads and mailing lists. This could force ubuntu to actually get its shit together.

Isn't much of the point here the cultural shove? Sure, there's the line-go-up stuff; but that doesn't explain the companies gutting quite profitable software development operations to shovel money at Nvidia for things that have no demonstrated ROI; if it were nothing personal, just business, the level of enthusiasm for taking on poorly characterized risk would not be as fervent as it is. It's absolutely about resentment of the human resources that has been running at least as long as the demonstration that it would actually take some shoving to get them all to come back to the office, likely significantly longer.

It's the significantly less common case, for some combination of a lot of high-visibility stupidity being lethal and lethal accidents being public in ways that the details of nonlethal accidents aren't; but destruction of gonads under sufficiently foolish circumstances qualifies a living recipient.