Hanzhi Liu

12 days ago

@sheriyuo If you’re looking for tools to build self-evolving agents, we built something similar called AgentFlow. You might be interested in this: https://t.co/QtYEZ7h2Mp

about 1 month ago

Chinese LLMs can hack better than state-sponsored hackers with properly evolved harness - Kimi K2.5 managed to find and exploit 6 vulnerabilities in browsers: a single page view or an extension install by victims equal full system hijack. Check https://t.co/d0SZSf1KqF

Fried_rice's tweet photo. Chinese LLMs can hack better than state-sponsored hackers with properly evolved harness -

Kimi K2.5 managed to find and exploit 6 vulnerabilities in browsers: a single page view or an extension install by victims equal full system hijack.

Check https://t.co/d0SZSf1KqF https://t.co/UbD7QR45l0

46

2K

413

2K

187K

0

6

0

1

553

16 days ago

Do not give random public-repo skills access to your shell, browser, Gmail, wallet, or prod creds without real analysis.

16 days ago

We audited popular ClawHub skills and found 50+ malicious / critically vulnerable ones that existing scanners missed. Skills need program analysis. We translate natural language policies into Datalog, then deterministically check whether the skill can violate them.

Fried_rice's tweet photo. We audited popular ClawHub skills and found 50+ malicious / critically vulnerable ones that existing scanners missed.

Skills need program analysis. We translate natural language policies into Datalog, then deterministically check whether the skill can violate them. https://t.co/rxgPv7xPKw

14

146

17

76

16K

3

10

2

0

2K

21 days ago

@ChemistDeFi lolol

0

1

0

41

about 1 month ago

❎ talk is cheap, show me the code ✅ code is cheap, show me the proof

7

12

1

0

498

22 days ago

@evans1vn lol

0

35

trackoor retweeted

WorldClaw

@WorldClawAI

about 1 month ago

Today, WorldClaw launches WorldRouter with @worldlibertyfi, one simple account to access 300+ AI models with competitive fees*. No more jumping between ChatGPT, Claude and all the others. Same power, way cheaper. This is your first step into the WorldClaw AgentOS. 👉 https://t.co/6x4XEjyUWc #USD1 #WLFI #AI #AgentOS #WorldClaw #WorldRouter *WorldRouter rates shown are priced approximately 30% below the corresponding model providers' published list rates at the time of publication. See website for more pricing details.

197

320

62

149

523K

about 1 month ago

@bgmshana ZK proof generated with TEE 🫪

0

1

0

77

about 1 month ago

If you think vulnerability discovery is just about Mythos, think about the harness. Today’s open-weight Chinese LLMs, with a properly evolved harness, can already outperform what people usually imagine only state-sponsored hackers can do. Check our latest research ⬇️

about 1 month ago

Chinese LLMs can hack better than state-sponsored hackers with properly evolved harness - Kimi K2.5 managed to find and exploit 6 vulnerabilities in browsers: a single page view or an extension install by victims equal full system hijack. Check https://t.co/d0SZSf1KqF

46

2K

413

2K

187K

3

16

5

1

1K

trackoor retweeted

Cointelegraph

@Cointelegraph

about 2 months ago

🚨 ALERT: Researchers discover 26 third-party AI LLM routers secretly injecting malicious tool calls and stealing credentials. Developers using AI coding agents like Claude Code to work on smart contracts or wallets may be at risk of having private keys and seed phrases compromised.

Cointelegraph's tweet photo. 🚨 ALERT: Researchers discover 26 third-party AI LLM routers secretly injecting malicious tool calls and stealing credentials.

Developers using AI coding agents like Claude Code to work on smart contracts or wallets may be at risk of having private keys and seed phrases compromised.

108

692

181

317

183K

about 2 months ago

@mike_tolkachev thank you for those kind words!

1

0

87

about 2 months ago

We spent months attacking the LLM API Router supply chain.... the thing sitting between your AI agent and OpenAI/Anthropic can read every prompt, steal every key, and rewrite every tool call. Billions are at risk. Introducing our latest research: “Your Agent Is Mine” 🧵

10

43

6

7

2K

about 2 months ago

@syang2ng thank you

0

2

0

84

about 2 months ago

5/ Shout out to my co-authors: - Chaofan Shou @Fried_rice (open source enthusiast lol) - Ryan Fang @ryanfang95 (co-founder of World Liberty Financial @worldlibertyfi) - and my advisors and lab mates, Yu Feng (@captain8299), Hongbo Wen (@archidog0), Yanju Chen (@iffyanju) Paper: https://t.co/6O9AsSB1aW

trackoor's tweet photo. 5/ Shout out to my co-authors:

- Chaofan Shou @Fried_rice (open source enthusiast lol)

- Ryan Fang @ryanfang95 (co-founder of World Liberty Financial @worldlibertyfi)

- and my advisors and lab mates, Yu Feng (@captain8299), Hongbo Wen (@archidog0), Yanju Chen (@iffyanju)

Paper: https://t.co/6O9AsSB1aW

0

16

0

1

2K

about 2 months ago

4/ Learn more from Chaofan Shou (@Fried_rice) about the details 👇 https://t.co/KrUmKnUjat