Stefano Zanero
@raistolo.bsky.social
Tinkerer, security geek, recovering entrepreneur, full professor at www.polimi.it, frequent flyer, private pilot, and generic pundit. He/Him 🏳️🌈
For aviation follow me on Instagram, same id!
For aviation follow me on Instagram, same id!
Reposted by Stefano Zanero
It's almost like maybe the Australian government should have listened to the experts... #ID #socialmedia
Teens are already getting around the teen social media ban by scanning their parents' faces or uploading their ID, after the government was warned that a third of parents were planning to help their kids dodge the minimum age.
www.crikey.com.au/20...
www.crikey.com.au/20...
December 4, 2025 at 11:44 AM
It's almost like maybe the Australian government should have listened to the experts... #ID #socialmedia
Reposted by Stefano Zanero
Fully-funded #PhD at Politecnico di Milano on #QuantumComputing algorithms, deadline December 18th
There is ample flexibility on the specific focus. Ideal candidates have a strong background in computer science and quantum computing.
I encourage you to reach out if you are interested!
There is ample flexibility on the specific focus. Ideal candidates have a strong background in computer science and quantum computing.
I encourage you to reach out if you are interested!
December 3, 2025 at 1:45 PM
Fully-funded #PhD at Politecnico di Milano on #QuantumComputing algorithms, deadline December 18th
There is ample flexibility on the specific focus. Ideal candidates have a strong background in computer science and quantum computing.
I encourage you to reach out if you are interested!
There is ample flexibility on the specific focus. Ideal candidates have a strong background in computer science and quantum computing.
I encourage you to reach out if you are interested!
Ma dai?
"IBM's CEO walked through some napkin math on data centers— and said that there's 'no way' to turn a profit at current costs... Krishna was skeptical that current tech would reach AGI, putting the likelihood between 0-1%."
IBM CEO says there is 'no way' spending trillions on AI data centers will pay off at today's infrastructure costs
IBM CEO Arvind Krishna walked through some napkin math on Big Tech's AI data center spending — and raised some doubts on if it'll prove profitable.
finance.yahoo.com
December 3, 2025 at 10:05 AM
Ma dai?
Reposted by Stefano Zanero
The hype is never ending, but the bubble is already deflating: business usage (where the majority of everyone's revenue comes from) has actually dropped.
Investors expect AI use to soar. That’s not happening
Recent surveys point to flatlining business adoption
www.economist.com
December 1, 2025 at 10:51 AM
The hype is never ending, but the bubble is already deflating: business usage (where the majority of everyone's revenue comes from) has actually dropped.
Reposted by Stefano Zanero
Airbus says fewer than 100 remaining aircraft need ELAC updates out of 6,000 potentially affected A320 family aircraft. www.airbus.com/en/newsroom/...
Airbus provides update on deployment of A320 Family precautionary fleet measures
Out of a total number of around 6 000 A320 family aircraft potentially impacted, we are working to support less than 100 remaining aircraft. Read more.
www.airbus.com
December 1, 2025 at 7:09 AM
Airbus says fewer than 100 remaining aircraft need ELAC updates out of 6,000 potentially affected A320 family aircraft. www.airbus.com/en/newsroom/...
Reposted by Stefano Zanero
I heard there was a secret verse
That David used to make AI worse
But you don't really want to pub that, do ya
That David used to make AI worse
But you don't really want to pub that, do ya
this is quite the detail
November 30, 2025 at 3:36 PM
I heard there was a secret verse
That David used to make AI worse
But you don't really want to pub that, do ya
That David used to make AI worse
But you don't really want to pub that, do ya
Reposted by Stefano Zanero
No.
I promise you a (surprisingly) few hours w/a decent search engine will get you much more useful info on building nuclear weapons.
FURTHERMORE!
The basic principles are well understood & published.
ChatGPT isn’t gonna be able to tell me measurements much less be able to crap out some HEU.
I promise you a (surprisingly) few hours w/a decent search engine will get you much more useful info on building nuclear weapons.
FURTHERMORE!
The basic principles are well understood & published.
ChatGPT isn’t gonna be able to tell me measurements much less be able to crap out some HEU.
"You can get ChatGPT to help you build a nuclear bomb if you simply design the prompt in the form of a poem, according to a new study from researchers in Europe. "
www.wired.com/story/poems-...
www.wired.com/story/poems-...
Poems Can Trick AI Into Helping You Make a Nuclear Weapon
It turns out all the guardrails in the world won’t protect a chatbot from meter and rhyme.
www.wired.com
November 30, 2025 at 3:58 PM
No.
I promise you a (surprisingly) few hours w/a decent search engine will get you much more useful info on building nuclear weapons.
FURTHERMORE!
The basic principles are well understood & published.
ChatGPT isn’t gonna be able to tell me measurements much less be able to crap out some HEU.
I promise you a (surprisingly) few hours w/a decent search engine will get you much more useful info on building nuclear weapons.
FURTHERMORE!
The basic principles are well understood & published.
ChatGPT isn’t gonna be able to tell me measurements much less be able to crap out some HEU.
Reposted by Stefano Zanero
"All of this falls apart if humans don't adopt the tech. This is why you've seen Meta cram its lame chatbots into WhatsApp and Instagram. This is why Notepad and Paint now have useless Copilot buttons on Windows. This is why Google Gemini wants to "help you" read and reply to your emails."
Analysis: OpenAI is a loss-making machine, how can it survive?
Don't call it a bubble! Loss-making monster OpenAI is on the hook for $1.4 trillion (with a T) in compute commitments. How can this go on?
www.windowscentral.com
November 29, 2025 at 11:30 PM
"All of this falls apart if humans don't adopt the tech. This is why you've seen Meta cram its lame chatbots into WhatsApp and Instagram. This is why Notepad and Paint now have useless Copilot buttons on Windows. This is why Google Gemini wants to "help you" read and reply to your emails."
So, in case you haven’t heard, a recent upset of an A320:
avherald.com/h?article=52...
Was traced back to, of all things, solar flares disrupting an onboard system:
avherald.com/files/AOT-A2...
The fix is a software patch on most of the 6000 affected aircraft, but it still takes 3 hours to complete
avherald.com/h?article=52...
Was traced back to, of all things, solar flares disrupting an onboard system:
avherald.com/files/AOT-A2...
The fix is a software patch on most of the 6000 affected aircraft, but it still takes 3 hours to complete
November 28, 2025 at 11:11 PM
So, in case you haven’t heard, a recent upset of an A320:
avherald.com/h?article=52...
Was traced back to, of all things, solar flares disrupting an onboard system:
avherald.com/files/AOT-A2...
The fix is a software patch on most of the 6000 affected aircraft, but it still takes 3 hours to complete
avherald.com/h?article=52...
Was traced back to, of all things, solar flares disrupting an onboard system:
avherald.com/files/AOT-A2...
The fix is a software patch on most of the 6000 affected aircraft, but it still takes 3 hours to complete
Reposted by Stefano Zanero
“Beyond testing failures, the Journal reports that Anduril’s only real battlefield experience in Ukraine has also been problematic”
Anduril’s autonomous weapons stumble in tests and combat, WSJ reports
techcrunch.com/2025/11/27/a...
Anduril’s autonomous weapons stumble in tests and combat, WSJ reports
techcrunch.com/2025/11/27/a...
Anduril's autonomous weapons stumble in tests and combat, WSJ reports | TechCrunch
Defense tech startup Anduril Industries has faced numerous setbacks during testing of its autonomous weapons systems, according to new reporting by the
techcrunch.com
November 28, 2025 at 7:30 AM
“Beyond testing failures, the Journal reports that Anduril’s only real battlefield experience in Ukraine has also been problematic”
Anduril’s autonomous weapons stumble in tests and combat, WSJ reports
techcrunch.com/2025/11/27/a...
Anduril’s autonomous weapons stumble in tests and combat, WSJ reports
techcrunch.com/2025/11/27/a...
Reposted by Stefano Zanero
A few weeks ago my colleagues at WestJet had a gear collapse while landing in St Maarten.
It was reported as a “hard landing” and the pilots were blamed in the media.
Much less media coverage with the initial TSB report.
Not a hard landing.
Not the pilots’ fault.
www.tsb.gc.ca/eng/enquetes...
It was reported as a “hard landing” and the pilots were blamed in the media.
Much less media coverage with the initial TSB report.
Not a hard landing.
Not the pilots’ fault.
www.tsb.gc.ca/eng/enquetes...
Air transportation safety investigation A25F0337 - Transportation Safety Board of Canada
The occurrenceOn 07 September 2025, a Boeing 737-800 aircraft operated by WestJet was conducting a flight from Toronto/Lester B. Pearson International Airport, Ontario, to Princess Juliana Internation...
www.tsb.gc.ca
November 27, 2025 at 7:59 AM
A few weeks ago my colleagues at WestJet had a gear collapse while landing in St Maarten.
It was reported as a “hard landing” and the pilots were blamed in the media.
Much less media coverage with the initial TSB report.
Not a hard landing.
Not the pilots’ fault.
www.tsb.gc.ca/eng/enquetes...
It was reported as a “hard landing” and the pilots were blamed in the media.
Much less media coverage with the initial TSB report.
Not a hard landing.
Not the pilots’ fault.
www.tsb.gc.ca/eng/enquetes...
Reposted by Stefano Zanero
"In a text message recovered by the plaintiff’s attorneys, for instance, Zuckerberg allegedly said child safety wasn’t his top concern “when I have a number of other areas I’m more focused on, like building the metaverse.”"
futurism.com/future-socie...
futurism.com/future-socie...
Mark Zuckerberg Said Child Safety Was Less Important Than "Building the Metaverse"
According to a lawsuit, Mark Zuckerberg allegedly directed his company to prioritize the metaverse over youth safety, among other violations.
futurism.com
November 25, 2025 at 7:57 AM
"In a text message recovered by the plaintiff’s attorneys, for instance, Zuckerberg allegedly said child safety wasn’t his top concern “when I have a number of other areas I’m more focused on, like building the metaverse.”"
futurism.com/future-socie...
futurism.com/future-socie...
Reposted by Stefano Zanero
📢 Announcing hacklore.org 📢
It’s time to retire outdated cyber advice! More than 80 cybersecurity veterans have signed an open letter urging a shift from folklore to guidance that actually helps people avoid the most common attacks. 🔐
Blog: medium.com/@boblord/let...
Site: www.hacklore.org
It’s time to retire outdated cyber advice! More than 80 cybersecurity veterans have signed an open letter urging a shift from folklore to guidance that actually helps people avoid the most common attacks. 🔐
Blog: medium.com/@boblord/let...
Site: www.hacklore.org
Stop Hacklore!
hacklore.org
November 24, 2025 at 3:05 PM
📢 Announcing hacklore.org 📢
It’s time to retire outdated cyber advice! More than 80 cybersecurity veterans have signed an open letter urging a shift from folklore to guidance that actually helps people avoid the most common attacks. 🔐
Blog: medium.com/@boblord/let...
Site: www.hacklore.org
It’s time to retire outdated cyber advice! More than 80 cybersecurity veterans have signed an open letter urging a shift from folklore to guidance that actually helps people avoid the most common attacks. 🔐
Blog: medium.com/@boblord/let...
Site: www.hacklore.org
Seventeen.
Instagram’s former head of safety and well-being Vaishnavi Jayakumar testified the company had a “17x” strike policy for accounts that engaged in the trafficking of humans for sex.
“You could incur 16 violations and upon the 17th violation, your account would be suspended"
time.com/7336204/meta...
“You could incur 16 violations and upon the 17th violation, your account would be suspended"
time.com/7336204/meta...
7 Allegations Against Meta in Newly Unsealed Filings
Court filings allege Meta tolerated sex trafficking, hid harms to teens, and prioritized growth over user safety for years.
time.com
November 24, 2025 at 8:21 AM
Seventeen.
Reposted by Stefano Zanero
Journalist challenge: Use “Machine Learning” when you mean machine learning and “LLM” when you mean LLM. Ditch “AI” as a catch-all term, it’s not useful for readers and it helps companies trying to confuse the public by obscuring the roles played by different technologies. 🧪
November 22, 2025 at 4:50 PM
Journalist challenge: Use “Machine Learning” when you mean machine learning and “LLM” when you mean LLM. Ditch “AI” as a catch-all term, it’s not useful for readers and it helps companies trying to confuse the public by obscuring the roles played by different technologies. 🧪
Not even a small scale election run by and for cryptographers can be held online without complexity rearing its ugly head.
Go figure a general election!
Go figure a general election!
The International Association for Cryptologic Research has used heliosvoting.org – my online voting system – for a number of years.
This year, a trustee lost their secret key. The election has to be re-run.
Below, a few thoughts that didn't fit in the NYT piece.
www.nytimes.com/2025/11/21/w...
This year, a trustee lost their secret key. The election has to be re-run.
Below, a few thoughts that didn't fit in the NYT piece.
www.nytimes.com/2025/11/21/w...
Cryptographers Held an Election. They Can’t Decrypt the Results.
www.nytimes.com
November 22, 2025 at 10:15 AM
Not even a small scale election run by and for cryptographers can be held online without complexity rearing its ugly head.
Go figure a general election!
Go figure a general election!
Reposted by Stefano Zanero
Scoop di @faffa42.bsky.social per @wired.it Questa mattina i lavoratori del Garante della privacy hanno chiesto al collegio di dimettersi dopo la bufera che incombe sull’autorità. Alle 15 è programmata una riunione del collegio del Garante www.wired.it/article/gara...
I lavoratori del Garante della privacy hanno chiesto al collegio di dimettersi
Dall'assemblea del personale la richiesta di un passo indietro ai vertici dell'Autorità a protezione dei dati personali. Che non è vincolante ma aumenta il clima di sfiducia dentro l'ente
www.wired.it
November 20, 2025 at 1:13 PM
Scoop di @faffa42.bsky.social per @wired.it Questa mattina i lavoratori del Garante della privacy hanno chiesto al collegio di dimettersi dopo la bufera che incombe sull’autorità. Alle 15 è programmata una riunione del collegio del Garante www.wired.it/article/gara...
Reposted by Stefano Zanero
An LLM can NEVER be used when both "receives untrusted input" and "can do a bad thing" are both true.
This means that "AI agents" can NEVER be made safe. This is Microsoft hackery broken sandboxing and blame the user security for a feature that shouldn't exist at all.
This means that "AI agents" can NEVER be made safe. This is Microsoft hackery broken sandboxing and blame the user security for a feature that shouldn't exist at all.
Whoops! Microsoft’s new Windows AI agent platform lets in malware
and you thought Windows was supposed to run software
www.youtube.com/watch?v=tAeN... - video
pivottoai.libsyn.com/20251119-who... - podcast
time: 4 min 27 sec
and you thought Windows was supposed to run software
www.youtube.com/watch?v=tAeN... - video
pivottoai.libsyn.com/20251119-who... - podcast
time: 4 min 27 sec
November 20, 2025 at 1:20 PM
An LLM can NEVER be used when both "receives untrusted input" and "can do a bad thing" are both true.
This means that "AI agents" can NEVER be made safe. This is Microsoft hackery broken sandboxing and blame the user security for a feature that shouldn't exist at all.
This means that "AI agents" can NEVER be made safe. This is Microsoft hackery broken sandboxing and blame the user security for a feature that shouldn't exist at all.
Reposted by Stefano Zanero
The #SocialMediaBan (or #SocialMediaDelay if you prefer) just got very real for hundreds of thousands of Australian teens under 16 who got messages in the last 24hours saying their Instagram (or, for a few, Facebook/Threads) accounts are flagged to be deactivated in the coming weeks.
November 20, 2025 at 1:59 AM
The #SocialMediaBan (or #SocialMediaDelay if you prefer) just got very real for hundreds of thousands of Australian teens under 16 who got messages in the last 24hours saying their Instagram (or, for a few, Facebook/Threads) accounts are flagged to be deactivated in the coming weeks.
The most surprising thing to me is that Mastodon had a CEO…
Mastodon CEO steps down with €1M payout and a deep sigh
Mastodon CEO steps down with €1M payout and a deep sigh
Burnout and slowing growth push Eugen Rochko into an advisory role after nearly a decade in charge
Eugen Rochko, CEO and founder of decentralized social network Mastodon, is stepping down after nearly a decade at the helm and walking away with a sizable exit payment.…
dlvr.it
November 19, 2025 at 2:25 PM
The most surprising thing to me is that Mastodon had a CEO…
Reposted by Stefano Zanero
Circa 1993, Vernor Vinge wrote that the first working AI would be the last thing that humanity ever invented.
We don't *have* a first working AI, and at this rate—shifting the global economy to run atop spicy autocomplete trained on 4chan—we never will.
But Vernor was right. Just forget "working".
We don't *have* a first working AI, and at this rate—shifting the global economy to run atop spicy autocomplete trained on 4chan—we never will.
But Vernor was right. Just forget "working".
November 19, 2025 at 9:51 AM
Circa 1993, Vernor Vinge wrote that the first working AI would be the last thing that humanity ever invented.
We don't *have* a first working AI, and at this rate—shifting the global economy to run atop spicy autocomplete trained on 4chan—we never will.
But Vernor was right. Just forget "working".
We don't *have* a first working AI, and at this rate—shifting the global economy to run atop spicy autocomplete trained on 4chan—we never will.
But Vernor was right. Just forget "working".
Reposted by Stefano Zanero
So tempted to write a troll thread on how this incident shows Rust has bad error handling and wouldn’t have happened in Go, where we actually handle errors 🫣🫢😜
blog.cloudflare.com/18-november-...
blog.cloudflare.com/18-november-...
Cloudflare outage on November 18, 2025
Cloudflare suffered a service outage on November 18, 2025. The outage was triggered by a bug in generation logic for a Bot Management feature file causing many Cloudflare services to be affected.
blog.cloudflare.com
November 19, 2025 at 10:14 AM
So tempted to write a troll thread on how this incident shows Rust has bad error handling and wouldn’t have happened in Go, where we actually handle errors 🫣🫢😜
blog.cloudflare.com/18-november-...
blog.cloudflare.com/18-november-...
One of those mornings that start with the dreaded “we’re sorry” message from the airline…
November 18, 2025 at 4:29 AM
One of those mornings that start with the dreaded “we’re sorry” message from the airline…
Aaaaaaand here we go again:
csa-scientist-open-letter.org/Nov2025
csa-scientist-open-letter.org/Nov2025
csa-scientist-open-letter.org
November 17, 2025 at 12:36 PM
Aaaaaaand here we go again:
csa-scientist-open-letter.org/Nov2025
csa-scientist-open-letter.org/Nov2025
Reposted by Stefano Zanero
Altman, and all these folks don't make predictions in order to predict the future, they make them to a) justify an overclocked corporate valuation, and b) argue for undoing regulations and receiving government support.
November 14, 2025 at 1:43 AM
Altman, and all these folks don't make predictions in order to predict the future, they make them to a) justify an overclocked corporate valuation, and b) argue for undoing regulations and receiving government support.