I've had a few sales reps do this for products they're trying to sell us. In front of me, they've opened their laptop, with no password, then used some remote access solution to access another customers equipment, and then demonstrate functions on it.
I made a rule. If you do this I cannot possibly trust you. I will never buy your products.
> In the past, exploiting an application required a highly skilled hacker with years of experience and a significant investment of time to find and exploit vulnerabilities. The reality is that humans don’t have the time, attention, or patience to find everything.
I read this as:
"We figured no one was looking so we just shipped unsafe garbage for years. We never once did an internal audit, never once paid a hacker to try to exploit our product, never thought we'd get caught with our substandard products."
If a guy in his basement with $200 dollars can ruin your company then you were trading on vapor the entire time. I'm sorry you had to find out this way.
From the very beginning I've been extremely uneasy letting a corporation have access to my "chat like" interactions over a long period of time with their product.
I think it's insanely foolish to use these tools in these configurations.
If you must use AI you should be running it locally.
Which works if you assume that AI can find 100% of your bugs.
It can't. So this is a complete waste of your time and will hide actual bugs behind a layer of confidence _and_ obscurity.
You're going to actually have to sit down and figure out how to provide real security in your product while earning profits. This is called "work." I understand Silicon Valley would like to earn money and not work. I am eager for these people to get their comeuppance.
Just make quotas illegal. Make enforcing them a felony for command staff. Lock up body worn camera videos so they can't be used for "performance review." That footage belongs to the public, for legal purposes, it shouldn't be a "tool" outside of that.
More importantly, can I borrow you car? I have some, uh, stuff, to go do.
Would you mind if I parked near your house, such that every morning, when you drove past, I could follow you. To work, to the store, to the gym, you know, wherever.
Then on the way home I'll park where I left off. If anyone asks me I'll them everything I know about you. It's "public" information after all.
Having this surveillance done by human beings rate limits the process to, in theory, focus it on actual criminals. Requiring warrants for the more invasive and persistent techniques adds another layer of accountability.
You're bootstrapping your argument with an assumption that there's something to account for. Public activities are public. You're shifting the accountability from the actor to the observer.
It depends on the scope of the mission. If you're going to commercialize long term space travel then you're going to want some form of artificial gravity.
If you build a better toilet you need a better pooper to use it. And they need to use it correctly every time or you're going to need a really good waste cleaning and disinfecting strategy for your ship.
I made a rule. If you do this I cannot possibly trust you. I will never buy your products.
It's insane to me.
reply