HomeCyber Security📘 Unsupervised Studying NO. 507 – Cyber Tech

📘 Unsupervised Studying NO. 507 – Cyber Tech

March 7, 2026

UPDATES

Hey! Hope you all are doing effectively!

I am glad being again house with no main journey deliberate till subsequent 12 months. Woohoo! Extra time to work on Kai and Neovim configs! And ship, after all.

Some of the idea-rich newsletters I’ve completed shortly. I have to get higher at placing these out on Monday morning and never engaged on them endlessly via Monday and Tuesday. They only get so thrilling as I dig into all of the concepts!

Having fun with this guide. Simply got here out in reprint.

🛡️ Main evaluation on the Anthropic Report. See the primary story in Cybersecurity under.

🤯 Engaged on an enormous thought for Karpathy’s Software program 2.0 thought and merging it into Kai at a DNA degree. Additionally spawned by a current in-person hangout with my buddy Clint Gibler, which was phenomenal. TEASE: Verifiability All The Issues.

Submitted a bug to Anthropic in Claude Code couple weeks in the past and it simply obtained mounted tonight by the Anthropic crew!

*Brushes off arms, pungent face, nods, and appears round triumphantly

My buddy at OpenAI is hiring offensive safety engineers to pink crew their AI brokers My buddy is an absolute star, and I’ve heard nothing however good issues in regards to the crew. If that is you, you must examine this out. OPENAI JOB POSTING

Tremendous excited to be consolidating and upgrading numerous my enterprise workflows earlier than heading into 2026. I’ve a brand new Head of Operations who’s extraordinary, and we’re consolidating on a single instrument (reply to this electronic mail and ask for the title in case you’re curious) for each mission administration and chat.

I additionally discover it humorous that the instrument simply applied Slack as a minor function throughout the platform. Like I actually don’t have any function inside this platform’s chat that I haven’t got in Slack. However the reverse is certainly true. Truthfully glad to see it as a result of I really feel like Slack has handled folks badly simply because they might.

Huge improve to my voice system for Kai. Now I am utilizing the upgraded API endpoint for Eleven Labs. So all of my completely different brokers, together with Kai and all of the sub-agents, are utilizing parsody markers for his or her voices, which is mainly a markdown system for indicating emotion.

I am undecided what’s occurred within the final couple of months, however it seems that X has largely made a return as the primary place for dialog on-line—no less than inside tech, safety, and positively inside AI. I’m now recommending to mates that left—lots of which for good causes—take into account coming again. If you happen to actually have a look at them, any platform that you just take part in goes to have folks and concepts related to it that you just deeply dislike. And sooner or later, it is not a internet win trade-off for you, or anybody else, to exclude your self from dialog and exercise due to that. I personally have seen the negativity and hate stuff drop off considerably in the previous couple of months, and there are indicators that that’s going to enhance. This mixed with my liberal use of filters and muting, and the truth that the choice have largely self-immolated, have introduced me to this conclusion. Simply take into account it.

30M Domains Later, Right here’s What We Discovered Hiding in Shadow IT

From backups holding reside credentials to reside admin panels with no authentication, these exposures keep invisible to you however extensive open to attackers. Learn the analysis to see what we discovered and the way Intruder helps you discover it first.

Daniel right here: That is mainly certainly one of my favourite firm varieties: those that continuously run within the background in search of stuff to tell you about.

I upgraded my dictation microphone to the up to date model of my Sennheiser growth mic, the MHK 8060, significantly to be used with Wispr Circulate. No, they aren’t a sponsor, but when they’re listening, they need to hit me up to allow them to be. 🙂

I used to be beforehand utilizing a high-end devoted Shure mic for this, however these are Condenser mics, that are designed to be actually clear, however typically aren’t as delicate. The Sennheiser growth mics are extraordinarily delicate, and the entire sport with dictation is I simply wish to kind of discuss and converse naturally as if I am speaking to a colleague, and since I am doing large dictation numbers I do not wish to should yell or make numerous corrections. The 8060 is overkill as a result of it is a skilled mic, however in case you get any dynamic mic, together with like a Yeti, it should be approach higher than dynamic mics for this specific use case. The factor with a Yeti is you would want it to be on an arm or proper in entrance of you in some way, near your mouth so you’ll be able to discuss quietly. That is why I just like the growth possibility so it’s sort of out of the way in which usually.

Anyway, in case you’re doing numerous AI, particularly utilizing dictation, I extremely advocate you turn to a dynamic microphone. Ideally, a growth mic that’s pointed in direction of you for doing AI dictation. And in case you’re doing numerous AI whereas typing, I like to recommend you turn to dictation. 🙂

Huge updates to the Private AI Infrastructure Mission.

  • I uploaded my core talent and quite a lot of different main expertise to the system

  • Utterly redid the context routing system and up to date hooks

  • Main upgrades to the voice system to incorporate the Parsody stuff I talked about above

  • Full cleansing of the documentation system

CYBERSECURITY

🔥 Greatest story for me final week was the the Anthropic report on Automated Cybersecurity Assaults. The quick model of that is that Anthropic discovered one other automated hacking marketing campaign utilizing their platform, and so they wrote a full report on it.

  • This isn’t the identical one they described a few months in the past. It is a fully new incident

  • The attacker was China-based and state-sponsored

  • The assault was really profitable and it hit a bunch of tech firms, monetary establishments, and authorities companies.

  • The massive distinction between the earlier one they reported on is that this one had rather a lot fewer human parts within the loop. They’re saying it was largely AI, like 85%

  • The best way they did it was by breaking the assault into an entire bunch of actually small items, every of which was comparatively benign, after which utilizing jailbreaking strategies to move the stuff that was tougher to disguise.

  • They particularly stated that they had been a part of a cybersecurity firm doing these assessments for safety causes

  • One key factor I assumed was attention-grabbing was that they talked about it robotically wrote the exploit code which was then used and was then profitable at extracting knowledge

  • The factor was really executing fairly crazily quick. A number of requests per second, generally

We have been saying right here for a very long time that the way forward for cybersecurity is attacker automation methods in opposition to offender automation methods. And now we’re seeing that truly come true

To me, this additionally scores as a win for scaffolding over mannequin as a result of evidently the primary approach that it labored was breaking issues into these discrete items as a part of an orchestration system

The one cause that we have now any visibility into this factor in any respect is as a result of they are not utilizing customized fashions. What occurs when China itself has fashions that attackers can use which can be pretty much as good or higher than this present technology?

Maybe the scariest factor to me is that the open-source fashions or the proprietary fashions utilized by China solely should get a sure degree of high quality earlier than the scaffolding itself—which will be shared as a sequence of expertise or as a whole automation system on GitHub or one thing—will be distributed to all attackers inside their ecosystem and utilized in assaults at scale. (AI won’t power me to cease utilizing em-dashes)

For the previous couple of months, I’ve really began to be involved about cybersecurity for the primary time shortly. Like I’ve at all times identified that the assaults will proceed to evolve, they will proceed to outsmart the defender, and the defender will then evolve. So it is going to proceed to be a Crimson Queen sport.

I am beginning to get actually involved that defenders can be too far behind on this maturity mannequin that I simply put collectively for my current discuss at AppSec USA.

This hole between defenders and attackers on this maturity mannequin is absolutely regarding to me. Primarily based on what I am seeing and listening to from the sector, I’m fearful attackers are a lot additional alongside at implementing Stage 2, and a few are already transferring in direction of Stage 3, whereas most defenders are nonetheless at degree one and simply beginning to consider degree 2.

And I am not simply speaking about start-ups or common firms or giant enterprises. I am additionally speaking in regards to the US, versus China, Russia, North Korea, or whoever. And to some extent even of a lot smaller actors who’re simply actually superior orchestration at degree 2 – 4.

My concern is that I have been in too many a whole lot of firms at this level serving to them with safety. And I’ve by no means seen anybody who can radically shift their defensive posture to account for a brand new risk this shortly.

Whether or not you are a enterprise competing in opposition to rivals or an organization defending in opposition to attackers, the one approach to beat a system like that is to have a system like this.

And your system must be higher. It wants a greater design, must be sooner, wants higher orchestration, wants extra context, wants extra real-time knowledge, and many others. It is just like the cat-and-mouse sport that we have all been speaking about for many years is now much more concrete, and it is personified as an AI orchestration system.

Attackers have the large benefit of having the ability to YOLO this sort of factor. They’ll launch 10 of them and see which one works. And if it doesn’t work and sort of breaks all the pieces, they simply delete and begin over. They do not have as a lot SRE to fret about and 5 nines to keep up and 37 completely different approvals earlier than they’ll even begin this system.

Defenders actually are in a foul spot right here, and that is the one tech struggle we can’t lose.

Logitech obtained hit by a zero-day exploit that leaked 1.8 terabytes of knowledge The Clop ransomware gang used an Oracle vulnerability to brush inner knowledge, although Logitech says no delicate buyer information was compromised. SEC FILING | LOGITECH DISCLOSURE | BLEEPINGCOMPUTER REPORT

Vault-free PAM for the cloud-native future

Vaults gradual groups down and broaden assault surfaces. Teleport’s vault-free PAM secures each reference to short-lived certificates and just-in-time entry. No passwords, no keys. Get least-privilege entry, centralized audit trails, and cloud-ready safety with 10x sooner provisioning.

Attackers now weaponize half of all CVEs inside 48 hours utilizing AI Gene Moody at Action1 says defenders cannot win at human pace—automation is not non-compulsory anymore, it is the one approach to shut the hole. Utterly agree. That is what we have been saying right here for a few years. Much like what we talked about within the first story. ACTION1 HOMEPAGE | ACTION1 PATCH MANAGEMENT | CISA KEV CATALOG

NATIONAL SECURITY

China threatens Japan with navy patrols and vacationer warnings after Taiwan protection feedback After Japan’s new PM Sanae Takaichi stated she’d defend Taiwan militarily, Beijing despatched warships to disputed waters and informed Chinese language vacationers to keep away from Japan completely. OODALOOP ARTICLE

Poland says two Ukrainians working for Russian intelligence sabotaged railway then fled to Belarus Polish PM Donald Tusk informed parliament that investigators recognized the suspects behind the rail explosion he referred to as unprecedented sabotage. POLISH RAILWAY EXPLOSION REPORT | ORIGINAL SABOTAGE STORY

America and China are neck and neck in navy drone capabilities A head-to-head comparability reveals each superpowers have roughly equal unmanned plane arsenals. WSJ DRONE COMPARISON

Europe plans a drone wall in opposition to Russian incursions however consultants say it will not be foolproof Safety correspondent Frank Gardner stories that after Russian drones flew into Poland, Europe desires a multi-layered protection system by 2027—however the tech won’t ever be watertight. BBC INDEPTH ARTICLE

AI

Google launched Gemini 3, and the metrics point out that it is a main leap However the actual check will come from folks really utilizing it within the area. I’ll be incorporating it in my Kai system, after all, however I do it via expertise and particular calls to the Gemini command line. a few of these jumps over earlier fashions are extraordinary, particularly Humanity’s final examination.

We obtained GPT-5-1 at 26% and 3Pro at 45%. From 17% in Arc AGI-2 to 31%. Have a look at Math Area Apex. That one is ridiculous. GPT-5-1: 1% to 23%. I assumed this merchandising bench 2 metric was actually cool. That is mainly an precise merchandising machine enterprise that is being run autonomously by AI. GPT-51 made $1,400 in revenue, and Gemini 3 Professional made $4,600 in revenue.

details Benchmark Suite from 50% to 70%. Easy QA verified 34% to 72%. Actually spectacular numbers. I simply cannot wait to see how this performs out in real-world situations.

The benchmark numbers that Google offered

In the meantime, Pachai says no firm will survive an AI bubble burst unscathed Sundar Pichai admits there’s “irrationality” within the AI growth and warns each firm—together with Google—would really feel the influence if it pops. BBC INTERVIEW WITH SUNDAR PICHAI

Fei-Fei Li and Yann LeCun each assume world fashions beat transformers They’re betting AI wants inner physics simulators that predict how actuality works, not simply next-token prediction at scale. ENTROPYTOWN ARTICLE | HN DISCUSSION

Fei-Fei Li’s World Labs launches Marble, the primary commercially accessible world mannequin World Labs beats rivals like Decart and Odyssey by launching Marble, which generates persistent, editable 3D environments as an alternative of morphing real-time worlds you’ll be able to’t maintain. MARBLE | WORLD LABS BLOG | FEI-FEI LI MANIFESTO

TECHNOLOGY

THE IDE: Antigravity, an agent-first IDE that manages a number of AI coders directly Google’s new VS Clone, Antigravity, has a “Supervisor view” that allows you to orchestrate a number of AI brokers in parallel, plus it creates Artifacts—process lists and browser recordings—so you’ll be able to confirm what it is really doing. THE VERGE ARTICLE | GEMINI 3 PRO ANNOUNCEMENT

Nvidia and Microsoft are pumping $15 billion into Anthropic in change for a $30 billion Azure dedication Anthropic’s getting huge funding however has to spend double that on Microsoft’s cloud, which is mainly a intelligent approach to lock in an enormous buyer.

The outage broke X, ChatGPT, and even McDonald’s kiosks. I’m wondering if we must always worth shares based mostly on how a lot of the web internet goes down after they have an outage. Is not that the actual check of market share? TOM’S HARDWARE LIVE COVERAGE

Enterprise funds now dwelling to twenty years previous as billions sit trapped in overvalued startups I used to be simply speaking about this a few months in the past. LPs are confronting a liquidity disaster the place funds final 18-20 years as an alternative of 13, with secondaries turning into important infrastructure and valuations exhibiting 90% reductions. TECHCRUNCH ARTICLE

I can construct enterprise software program however I am unable to cost for it EchenD nails the painful irony—technical expertise do not robotically translate to monetization expertise, and no person teaches engineers the way to really promote. ECHEN’S ESSAY | HN DISCUSSION

Peter Thiel bought his whole Nvidia stake Nvidia’s earnings are tomorrow, by the way in which. TECH IN ASIA ARTICLE

Tesla is lastly including CarPlay assist after years of Musk saying no BLOOMBERG ARTICLE

HUMANS

Kosmos autonomously reads 1500 papers and runs 42k strains of code to make actual scientific discoveries That is an instance of one of many issues I am most excited by way of sensible outputs from AI. Edison Scientific launches Kosmos, an AI scientist that beta customers say does 6 months of analysis work in in the future—it is already made seven discoveries together with discovering a possible Alzheimer’s mechanism.

I’m in Camp Scaffolding. Meaning I imagine {that a} main a part of intelligence—and maybe a very powerful half—is getting the proper content material into no matter intelligence that you’ve got on the proper time. I see medical progress the identical approach. Along with needing a very good world mannequin. I believe we have now completed tons of analysis that isn’t being harvested for details and truths that may be woven into a bigger understanding. if someone did analysis that claims so and so sort of cell responds in such and such approach to publicity to this specific sort of molecule, that’s the kind of info that must be mixed with many different granular items of data to provide one thing helpful.

We’re speaking a couple of large sport of join the dots, and numerous science is like that. one other approach to say that, that I speak about within the navy or cybersecurity context is that context reduces required experience.

If you happen to had been taking a look at an enormous map of precisely how the whole physique works, and an enormous map of how molecules have an effect on how the physique works, you’ll be having a totally completely different dialog about trigger and impact, and subsequently which medicines to construct and why. That is what excites me about AI, specifically, and specifically, such a strategy to AI the place we’re doing mass assortment and weaving a number of observations into what David Deutsch talks about as explanations.

Most individuals cannot inform AI music from human recordings in new survey A ballot discovered 97% of individuals could not distinguish between AI-generated and human-made music clips when listening to them. THE HILL ARTICLE

US Home votes practically unanimously to power launch of all Epstein information After the President reversed his preliminary opposition, the Home handed the Epstein Recordsdata Transparency Act with just one dissenting vote, requiring the Justice Division to launch all paperwork. DW ARTICLE | TRUMP AND EPSTEIN EXPLAINER | TRUMP CALLS FOR RELEASE

Chernobyl fungus advanced to eat radiation like vegetation eat mild UNILAD ARTICLE

Bavaria’s premier desires Germany to deliver again nuclear energy Bavarian Premier Markus SĂśder is pushing for a nuclear vitality comeback in Germany after the nation shut down its final reactors. GERMANY NEWS LIVE BLOG

IDEAS

Humiliation is unbelievably highly effective
I am not saying this can be a completely correct body, however one approach to view the world proper now could be China is scrambling up the ladder in plotting world domination due to the 100 Years Humiliation. And the present US President is in workplace as a result of Obama publicly humiliated him at an elite dinner. Humiliation creates drive like nothing else I can consider, and it is normally not the great type.

Galaxy mind resistance is about how simply you’ll be able to twist an argument to justify something Sensible essay right here. Vitalik argues that good reasoning needs to be onerous to abuse—inevitabilism, longtermism, and energy maximization all allow you to rationalize no matter you already wished, making them nugatory as precise arguments. VITALIK’S ESSAY

A must-read on the large leap of AI from Software program 2.0 → Software program 3.0. That is certainly one of Karpathy’s concepts that will get approach too little publicity.

Assume in Math. Write in Code. Math (not like programming) allows you to cause about logic freely with out committing to knowledge constructions, abstractions, or implementation particulars that constrain the way you assume. THINK IN MATH ARTICLE | JUSTIN MEINERS

Artistic work effort scales superlinearly as a result of high-quality peaks have tiny acceptance volumes Markus Strasser argues making stuff good is fractal search—when you zoom in, the parameter house that does not make it worse collapses onerous. CREATIVE WORK LANDSCAPES | MARKUS ON TWITTER

DISCOVERY

MCP Shark allows you to monitor and debug Mannequin Context Protocol site visitors It is mainly Wireshark for MCP connections, so you’ll be able to see what’s really flowing between AI apps and servers in real-time. MCP SHARK GITHUB | HN DISCUSSION

AI World Clocks generates a brand new clock each minute utilizing 9 AI fashions AI WORLD CLOCKS

Overheard: “Overconfidence is the brand new zero-day.”

Strace-macos brings system name tracing to macOS with out disabling SIP STRACE-MACOS REPO

You misunderstand what it means to be poor Being poor is not simply being broke—it is when your whole assist system can also be poor, so there is no security internet anyplace. CTMS BLOG POST | HN DISCUSSION

Agfs turns all the pieces into information, making distant sources really feel native It is a Plan9-inspired filesystem the place APIs, databases, and distant companies all present up as information you’ll be able to simply cat and echo to. AGFS GITHUB | HN DISCUSSION

Do Not Put Your Website Behind Cloudflare if You Do not Want To RIK’S BLOG POST

A curated GitHub repo amassing each main 2025 safety report in a single place Jacob Wilson’s awesome-annual-security-reports repo compiles all of the annual risk intelligence and safety stories from distributors, so you do not have to hunt them down individually. Undoubtedly making this a part of my workflow going ahead. GITHUB REPO

Cloudflare Zero Belief tunnels lastly defined in a approach that is sensible David breaks down tunnels, routes, and targets—seems you’ll be able to expose non-public networks publicly or construct totally digital non-public IPs that solely exist in Zero Belief. DAVID’S CLOUDFLARE GUIDE | DAVID ON X | DAVID ON BLUESKY

RECOMMENDATION OF THE WEEK

Every time there’s a main new development in society or an enormous information occasion, attackers will use that for scams.

Proper now, that factor is job loss within the tech sector, particularly, and faux recruiters on LinkedIn ship assembly invitations that result in websites pushing malicious “updates” which can be really distant entry instruments attackers can use for ransomware.

So in case you or folks you care about are in search of jobs, it’s worthwhile to warn them that scammers are transferring in that path in a short time. It’s important to be very cautious what hyperlinks you are clicking on and what you are giving info to.

APHORISM OF THE WEEK

❝

I started to appreciate how vital it was to be an fanatic in life. He taught me that if you’re eager about one thing, it doesn’t matter what it’s, go at it at full pace forward. Embrace it with each arms, hug it, like it and above all grow to be captivated with it. Lukewarm is not any good.

Roald Dahl

You’re at the moment receiving the STANDARD version.

Members assist this work proceed. If you happen to benefit from the publication, the podcast, what I placed on YouTube, or any of my open-source initiatives on Github, I ask you to please grow to be a member. It permits me to remain targeted on studying and constructing and sharing. It’s like a cup of espresso or two per 30 days.

Plus, members get quite a few advantages, together with:

  • 25-50% off all UL Paid Content material, together with the upcoming Human 3.0 / AUGMENTED ONLINE portal!

  • Entry to the extraordinary UL Member Group that features vibrant conversations with ~1,500 of the neatest and kindest folks you’ll discover on the web

  • Member-only Content material, similar to EDC guides on tech stacks, private productiveness routines, my suggestions on Important expertise to Construct Going Ahead, Pattern Identification and Evaluation, and extra…

  • Entry to the Member Archive of earlier Member-only content material, the Guide Membership archive, and many others.

  • Entry to The UL Guide Membership that’s been going month-to-month since 2017! One of many highlights of my and plenty of attendees’ month!

  • Entry to the Month-to-month Member Meet-up the place we speak about our routines, productiveness workflows, what’s on our minds, and many others.

  • Entry to In-Particular person Occasions like our dinners in Vegas, San Francisco, and many others.

That is the second to attach with others who’re good, type, and asking the identical questions we’re. The place is that this all going? And the way do to organize?

Related Posts

About The Author

admin

Azeem Rajpoot, the author behind This Blog, is a passionate tech enthusiast with a keen interest in exploring and sharing insights about the rapidly evolving world of technology. With a background in Blogging, Azeem Rajpoot brings a unique perspective to the blog, offering in-depth analyses, reviews, and thought-provoking articles. Committed to making technology accessible to all, Azeem strives to deliver content that not only keeps readers informed about the latest trends but also sparks curiosity and discussions. Follow Azeem on this exciting tech journey to stay updated and inspired.

Add a Comment

Your email address will not be published. Required fields are marked *

Our Mission

Our mission at this Blog is to empower and inform our audience by delivering high-quality, accessible, and engaging content on the latest technological trends, innovations, and their impact on our daily lives. We strive to be a go-to source for tech enthusiasts, providing insightful articles, reviews, and guides that cater to both professionals and those curious about the ever-evolving world of technology.

March 2026
M T W T F S S
 1
2345678
9101112131415
16171819202122
23242526272829
3031  

Legal Pages

x