_gie_

Forza Horizon 6 was very likely leaked by someone with early access to the build (reviewer or similar). At around the same time, the file list appeared on SteamDB because someone (could be someone else) used our token dumper. SteamDB does not display or share keys, nor can it provide downloads.

Iki sik duwe salah satu konglomerate kerajaan, sdh nempel sedini naik tahtanya rejim NDX; Pak RKH belione ki tajir mlintir penguasa perdikan JEC dan sesepuh K*DIN DIY. Menurut infone cah2 belione ngaku ndak punya wang utk memenuhi pesangon sesuai perjanjian kerja bersama yg nilainya 0,75 x gaji, padal wes murah bgt lo itu...isih nawar 0,5 x gaji. Jiaan kebangeten le pokil... 😠

Software horror: litellm PyPI supply chain attack. Simple `pip install litellm` was enough to exfiltrate SSH keys, AWS/GCP/Azure creds, Kubernetes configs, git credentials, env vars (all your API keys), shell history, crypto wallets, SSL private keys, CI/CD secrets, database passwords. LiteLLM itself has 97 million downloads per month which is already terrible, but much worse, the contagion spreads to any project that depends on litellm. For example, if you did `pip install dspy` (which depended on litellm>=1.64.0), you'd also be pwnd. Same for any other large project that depended on litellm. Afaict the poisoned version was up for only less than ~1 hour. The attack had a bug which led to its discovery - Callum McMahon was using an MCP plugin inside Cursor that pulled in litellm as a transitive dependency. When litellm 1.82.8 installed, their machine ran out of RAM and crashed. So if the attacker didn't vibe code this attack it could have been undetected for many days or weeks. Supply chain attacks like this are basically the scariest thing imaginable in modern software. Every time you install any depedency you could be pulling in a poisoned package anywhere deep inside its entire depedency tree. This is especially risky with large projects that might have lots and lots of dependencies. The credentials that do get stolen in each attack can then be used to take over more accounts and compromise more packages. Classical software engineering would have you believe that dependencies are good (we're building pyramids from bricks), but imo this has to be re-evaluated, and it's why I've been so growingly averse to them, preferring to use LLMs to "yoink" functionality when it's simple enough and possible.

Claude Code wiped our production database with a Terraform command. It took down the DataTalksClub course platform and 2.5 years of submissions: homework, projects, and leaderboards. Automated snapshots were gone too. In the newsletter, I wrote the full timeline + what I changed so this doesn't happen again. If you use Terraform (or let agents touch infra), this is a good story for you to read. https://t.co/Mbi3oM4HMn

🚨 هشدار اضطراری به ایرانیان ساکن خلیج فارس به شهروندان ایرانی مقیم امارات، کویت، قطر، بحرین و اردن که هنوز موفق به ترک این کشورها نشده‌اند، توصیه می‌شود هرچه سریع‌تر خاک این ۵ کشور را ترک کنند. در صورت عدم امکان خروج، از نزدیک شدن به هرگونه پایگاه نظامی، هتل، اسکله، مجموعه تجاری یا هر مکان مرتبط با ایالات متحده خودداری کرده و رفت‌وآمدهای غیرضروری را به حداقل برسانند.

Big Tech earnings calls, translated: "$650 billion in AI capital expenditure." They mean: more than the GDP of Sweden, Poland, and Norway combined. On graphics cards. "Once-in-a-generation infrastructure buildout." They mean: we don't know when this pays off and we need you to stop asking. "The opportunity is enormous." The analyst asked "when does this investment return profit?" This was the answer. The analyst said "that's not what I asked." The CEO said "next question." "Our people are our greatest asset." 108,435 assets were liquidated in January. Highest since the Great Recession. Amazon alone: 16,000. "Workforce optimization." Replacing the people with the machines the $650 billion is buying. "Investing in our future." Not yours. The severance is two weeks. The AI budget is $1.8 billion per day. "Democratizing intelligence." Centralizing it in four data centers owned by four companies and charging for access. "Sky-high demand." -- Jensen Huang, whose stock went up 7% the same week theirs went down 7%. He sells the shovels. They buy the shovels. You get the cardboard box.