"USING CLOUDFLARE TO BYPASS CLOUDFLARE
An attacker can setup a custom domain with Cloudflare and point the DNS A record to victims IP address. The attacker then disables all protection features for that custom domain in their tenant and tunnel their attack(s) through the Cloudflare infrastructure. This approach allows attackers to bypass the protection features by the victim."
https://certitude.consulting/blog/en/using-cloudflare-to-bypass-cloudflare/
@dfx If I remember correctly the Amiga version of SimCity has the tax "feature/bug", where you can max out taxes throughout the year, and at the end of the year you switch to 0 tax, and gain popularity as mayor.
@textfiles Damned, awesome!
In 2000, the Beatles created THEBEATLES.COM in relation to a new Beatles compilation album set, "1". For whatever reason, the legendary demoscene group MELON was hired to make flash animations for their songs. The results are now emulated at Internet Archive.
Warning: Flashing lights galore.
https://archive.org/details/melon-cometogether
https://archive.org/details/melon-ifeelfine
@bohemianchic@infosec.exchange You can google translate the PDF file directly by uploading here: https://translate.google.com/?sl=th&tl=en&op=docs
You will get a PDF to download in English, looks OK, I tried.
@malwaretech I think they'll be fine, as parents we teach them to be skeptical, especially to the mainstream media.
@pancake Thanks! Yes, the mastodon bridge sounds interesting.
"Risky Biz News: Chinese APT hacks subsidiaries, pivots to corporate headquarters
In other news: Google and Mozilla patch another Chrome & Firefox zero-day; Cisco patches its own zero-day; and new DarkRiver APT targets Russian defense sector."
https://riskybiznews.substack.com/p/chinese-apt-hacks-subsidiaries
@pancake OK, thanks for checking.
@malwaretech I'm guessing some mainstream news website, whatever it is, doubting very much it's something like: thegrayzone.com
@radareorg @pancake I tried using llama-2-7b-chat-codeCherryPop.Q5_K_M.gguf instead of llama-2-7b-chat-codeCherryPop.ggmlv3.q4_K_M.gguf, it's roughly 700mb bigger, gives similar results but supposedly more accurate ("large, very low quality loss - recommended"). Got it from here:
https://huggingface.co/TheBloke/llama2-7b-chat-codeCherryPop-qLoRA-GGUF
The slides for the #radare2 #ai presentation made by @pancake are now public! Check them out while they are still hot! https://github.com/radareorg/radare2-extras/blob/master/r2ai/local/r2ai.pdf
@pancake Does that still require you to have AI API access, or does it work stand-alone? I'm still learning how it works in detail.
@pancake AI models?
"Risky Biz News: China admits NSA hacked Huawei
In other news: iOS zero-days used to hack Egyptian presidential candidate; new Sandman APT targets telcos across the world; Russia's largest travel agency breached by pro-Ukraine hackers."
https://riskybiznews.substack.com/p/china-says-nsa-hacked-huawei
-"When the going gets weird, the weird turn pro..."