• Unsupervised Learning
  • Posts
  • UL NO. 462: Full-Face Mask Deceptions, VS Code Tunnel Hacks, Quiet AI Emergence at Apple, and Tokyo’s Three-Day Weekend Gamble

UL NO. 462: Full-Face Mask Deceptions, VS Code Tunnel Hacks, Quiet AI Emergence at Apple, and Tokyo’s Three-Day Weekend Gamble

...plus building personal TELOS files, the ChatGPT Pro vs. Claude coding face-off, a human bird flu case in Louisiana, and ketones fighting Alzheimer’s

SECURITY | AI | PURPOSE
UNSUPERVISED LEARNING is a newsletter about upgrading to thrive in a world full of AI. It’s original ideas, analysis, mental models, frameworks, and tooling to prepare you for the world that’s coming.

Hey there!

  • Settling in for a couple of light holiday weeks. I plan on doing lots of coding and light reading (LitRPG mostly, I think). What are you going to do?

  • Please go subscribe to the YouTube channel. Always forget to promote it, and we’re putting in work over there!
    SUBSCRIBE TO THE UL YOUTUBE CHANNEL

  • I wrote a piece for Dazz that I’ve been wanting to get out for a while. It’s about how I think continuously updated context will end up being the future of vulnerability management. Basically, the problem isn’t finding vulnerabilities; the problem is knowing how to fix them—in what priority—within any given organization. CHECK OUT THE ARTICLE

Sponsor

This AI is Game Changing for Security Operations 

Check out this annual benchmark data from Intezer's AI SOC solution:

➡️ 2 min 21 second average alert investigation time

➡️ 3.81% alert escalation rate

➡️ 97.7% accuracy for false positive alerts

➡️ 93.45% accuracy for true positive alerts

This is data from an AI SOC startup with a track record of triaging huge volumes of alerts for their customer base that includes Fortune 500 companies and top MSSPs. Impressive results compared to traditional triage processes.

Intezer has a unique approach to AI agents and an interesting back story too. Their CEO Itai Tevet co-founded Intezer in 2016, after he’d lived the reality of too many alerts and not enough time while leading an elite security and incident response team.

SECURITY

Full-Face Masks for Facial Recognition Evasion
There are new super-realistic printed face masks that people can use to appear as someone else from a distance. Insane how good they appear to be, combined with how easy they are to swap on and off. They seem good enough to possibly fool a cursory glance and even facial recognition. MORE

💡Someone in the security community needs to buy some of these and test them out with common facial recognition systems. That would be a fun project.

Visual Studio Code Remote Tunnel Attacks
Chinese hackers were caught using VS Code's remote tunnel feature to hack IT service providers in Southern Europe. The attackers used SQLmap for initial access, dropped a custom PHP webshell, and used a modified version of Mimikatz (called mimCN) that's been linked to other Chinese operations. MORE

China Restricts Drone Parts to Ukraine
China has started limiting sales of critical drone components to the US and Europe that are needed for Ukraine's defense efforts. MORE

Sponsor

How to investigate ChatGPT activity in Google Workspace 

When ChatGPT is allowed to access files directly from Google Drive, it grants extensive permissions for not only personal files, but resources across the entire shared drive. This blog post covers the potential risks of this integration, and how you can find activity related to ChatGPT in Google Workspace.

FBI Takes Down Rydox Cybercrime Market
The FBI has shut down Rydox, a cybercrime marketplace operating since 2016, and arrested three Kosovo nationals who were running it. The site had done $230,000 in revenue from selling over 321,000 cybercrime products to 18,000 users, including stolen PII and hacking tools. MORE

Russian APT Gamaredon Using New Android Spyware
Russian state-backed APT Gamaredon has been targeting Russian-speaking individuals with two Android spyware families called 'BoneSpy' and 'PlainGnome' that can record calls, capture photos, and collect SMS messages. MORE

Yahoo Paranoids Layoffs
Yahoo cut 25% of its cybersecurity team (The Paranoids) over the last year and completely eliminated its red team, moving to an outsourced model instead. The company lost between 40-50 security people out of 200 total since early 2024, amid broader tech organization changes under new CTO Valeri Liborski. MORE

AI / TECH

We’ve opened up slots for the AUGMENTED course again for February 3, 2025!

This instance of the course will be a full discussion and workshop on building out personal TELOS files and using AI to access them.

$495 (Members check the #augmented channel for your direct 25% discount link!)

BECOME A MEMBER TO GET THE DISCOUNT ( ←💡 Pays for the membership!)

😡 Claude > ChatGPT Pro For Me
I’m super annoyed to report that ChatGPT Pro, even with the full o1-pro and all the goodies, does not come close to Claude’s intelligence as a coding partner. Specifically using Sonnet 3.5. Claude is something like 70-85% effective at communication, following instructions, and general coding tasks. ChatGPT Pro is more like 50-70%. It doesn’t follow instructions well. It constantly loses the plot. And it’s just worse at coding. Plus it takes far longer because of o1’s thinking time. And I’m paying $200 for it.

💡I think ChatGPT will catch up, and I’m pulling for them because my loyalty going back to the start of 2023 is with OpenAI. Which is why I’m paying for Pro. But holy crap it’s annoying to pay so much for something that produces work I end up having to redo using Claude. 😡

Apple's Pragmatic AI Strategy
I think Apple is actually doing exceptionally well on the AI front (except for Siri, which is still unexplainable bad). But even Siri is better now with ChatGPT integration, which I’ve been using since the beta started. My absolute favorite feature of Apple Intelligence is the ability to hold the camera button on new iPhones and have ChatGPT tell you what you just took a picture of. MORE

💡Basically, Apple is building LifeOS, and they have been for like 15 years. This naturally includes complete integration of AI into everything life and work. And they’re doing it slowly. Methodically. And quietly. Just like usual.

Everyone doubted the slow and low approach to building the iPhone ecosystem too, and now everyone copies it because it’s the best in the world. It’s the same with their AI integration. They are piecing together all the plumbing of a person’s life in the iPhone ecosystem, and the overall Apple ecosystem, which all lives inside the secure enclave or the secure cloud infrastructure, and their AI will have access to all of it.

Apple’s entire game is integration. It’s all about the ecosystem and how it all works together. Applying AI to that will be done better on Apple than anywhere else because Apple is best at seeing everything as a unified whole.

Remember this when you hear people talk about how far behind Apple is on AI. And remember it when people are surprised by Apple “suddenly” figuring out AI 2 to 3 years from now. It’s not suddenly. It’s all planned. Quiet and slow is the game.

OpenAI Whistleblower Death
A former OpenAI researcher who publicly criticized the company's data practices was found dead in his San Francisco apartment, with authorities ruling it a suicide. Suchir Balaji, 26, had recently accused OpenAI of violating copyright law in training ChatGPT and was expected to provide key evidence in several ongoing lawsuits against the company. MORE

💡There is an atmosphere of conspiracy around lately, so I’ll just say that there of course could be malicious activity here, but it’s also the case that whistleblowers lead a difficult life. They tend to target someone big in their own community and get ostracized immediately as a result, which is profoundly isolating and stressful.

I don’t know the details of this case at all; I’m simply saying we shouldn’t always jump to the lowest probability and most nefarious explanation.

AI Company's Honestopian Billboard Campaign
A Y Combinator-backed startup called Artisan is running ads all over San Francisco with slogans like "Stop Hiring Humans" and "Artisans won't complain about work-life balance" to promote their customer service AI. The company's CEO said the campaign was designed to be dystopian and controversial to grab attention, but I don’t believe that. I think it has a dual purpose: controversy for marketing, but direct honesty for those actually looking to reduce headcount. MORE

ChatGPT Gets Real-Time Video Vision
ChatGPT can now analyze real-time video through your phone's camera, letting you point it at objects for instant analysis and conversation about what it sees. Works really well, actually, but I need it on the desktop. MORE

Google Announces Gemini 2 and AI Agents
Google released Gemini 2, which can now control computers and navigate the web to do tasks like shopping and coding. Seriously impressive stuff. It feels close to a ChatGPT moment from late 2022. Completely surreal to just talk to an AI that can see your screen and help you code. MORE

Exxon Plans Natural Gas Plant for AI Data Centers
Exxon is building its first-ever external power plant focused on AI data centers, with plans to generate 1.5 gigawatts of power through natural gas. They are one of the most innovative companies out there. I have issues with their ethics at times. Significant issues. But holy crap they can read the tea leaves. Becoming an energy provider to AI. Brilliant. MORE

Health Data Tracking in Markdown
Someone made a really smart case for tracking health data in Markdown files instead of apps, since apps eventually die and take your data with them. They use plain text files for daily logs and Google Sheets for trends, with everything backing up to Google Drive. Markdown all the things. MORE

GPS-Based NTP Server Appliances from CenterClick
CenterClick has released a line of GPS-based NTP server appliances that work completely offline with no subscriptions or cloud requirements. The devices support multiple GNSS constellations, can track up to 1 million unique IPs, and use less than 5W of power. MORE

United Airlines Adds AirTag Support to Mobile App
United Airlines is adding Apple's new Share Item Location feature to their mobile app, letting customers paste location-tracking links for their AirTagged bags directly into their missing bag reports. MORE

YouTube's TV Usage Stats Show Huge Growth
YouTube is seeing massive growth in TV viewing, with sports content up 30% and users watching over 400 million hours of podcasts on TVs monthly. MORE

HUMANS

Bird Flu Jumps to Human in Louisiana
Louisiana reports its first human case of H5N1 bird flu in someone who had contact with sick birds, and they're currently hospitalized. MORE

Tokyo Offers 3-Day Weekends to Boost Birth Rate
Tokyo is trying to increase births by giving its 160,000+ government workers a 4-day workweek starting in April, hoping less work means more babies. Japan's birth rate has fallen to 1.2 babies per woman, and they're expecting fewer than 700,000 newborns this year—the lowest since records began in 1899. MORE

Ketone Bodies Found to Clear Alzheimer's-Related Proteins
Research shows ketones don't just provide energy to the brain—they actually help remove misfolded proteins associated with Alzheimer's by making them easier to clear through autophagy, with dramatic results in both mouse and worm studies. MORE

DISCOVERY

Stack Analyzer
Detect more than +500 technologies in your code base. MORE

Security Talks at ReInvent
A playlist of all the security talks at AWS ReInvent. MORE

ZSTD vs GZIP Comparison
In a series of compression tests, ZSTD consistently outperformed GZIP and ZLIB across speed, compression ratio, and decompression efficiency metrics. The tests by Aditya Karnam showed ZSTD was particularly dominant with large datasets. MORE

RECOMMENDATION OF THE WEEK

Downtime. Fiction. Family. Friends.

APHORISM OF THE WEEK

Almost everything will work again if you unplug it for a few minutes, including you.

Anne Lamott

Thank you for reading. Please forward to a friend and/or share on socials to help support the work.

🫶🏼

Daniel