hiding the message in tweet geolocation. twitter used to let you set your own coordinates using any type of float values, so we'd spread a binary chain across a bunch of tweets with a few bits tucked into each location. the tweets themselves said nothing. pull them in order, decode the geo
Lol blatant liars and trying to use explicit legal speak. Of course you're not using data to improve "generative AI", you're using it on the embedding side for semantic search to help guide frontier models to accomplish the same outcome as researchers
Yesterday, we announced new product capabilities, and some of our messaging created confusion. We want to be direct.
Researcher submissions are not used to train, fine-tune, or otherwise improve generative AI models. This applies across our platform, including H1 Continuous Testing, H1 Agentic PTaaS, and Hai. Third-party model providers we work with are also prohibited from retaining or using researcher data for their own training.
We've updated our website language to reflect this more clearly. We heard your concerns, and we take them seriously.
@h4x0r_dz Same experience for me with both h1 and bugcrowd. They will close non duplicate reports since they "can't reproduce" even after being handed a working poc script + logs. Then they fix the bug. They will also claim your report is AI slop when it isn't. I stopped submitting bugs
I'd stay away from bugcrowd these days, they are straight up scamming. I submitted multiple bugs and they "can't reproduce" even with 1 shot poc scripts.
I'm glad most of you are just blindly copy/pasting from Claude and Codex these days, you're too retarded to have an original thought worth sharing anyway. At least now everyone that has a social brand gets partially fact checked by an LLM
From now on, if someone claims their exploit is bypassing ASLR, and they are simply using something like a mystery LFI to chain in order to do it... we are not friends, hell, we don't even speak the same language apparently. 🤣