Trick users and bypass warnings – Modern SVG Clickjacking attacks
Clickjacking is a classic attack that consists of covering up an iframe of some other website in an attempt to trick the user into unintentionally interacting with it. It works great if you need to trick someone into pressing a button or two, but for anything more complicated it’s kind of unrealistic. I’ve discovered a […]
Coca Cola has an executive dedicated to McDonald’s
Roberto Mercade is president of The McDonald’s Division (TMD) of The Coca‑Cola Company. He leads a global organization that is responsible for the company’s key relationship with McDonald’s in more than 100 markets. Mercade has been with Coca‑Cola since 1992, when he began his career as a production services manager in Puerto Rico. He went […]
State of AI: An Empirical 100T Token Study with OpenRouter
This empirical study offers a data-driven perspective on how LLMs are actually being used, highlighting several themes that nuance the conventional wisdom about AI deployment: 1. A Multi-Model Ecosystem. Our analysis shows that no single model dominates all usage. Instead, we observe a rich multi-model ecosystem with both closed and open models capturing significant shares. […]
Impacts of working from home on mental health tracked in study of Australians
Working from home can positively impact the mental health of Australian men and women in different ways, according to a new study of more than 16,000 people. Researchers at the University of Melbourne analysed 20 years of data compiled in the Household, Income and Labour Dynamics in Australia (HILDA) Survey to understand how working from […]
Thoughts on Go vs. Rust vs. Zig
Aug 09, 2025 I realized recently that rather than using “the right tool for the job” I’ve been using the tool at the job and that’s mostly determined the programming languages I know. So over the last couple months I’ve put a lot of time into experimenting with languages I don’t get to use at […]
Django 6
Content Security Policy support¶ Built-in support for the Content Security Policy (CSP) standard is now available, making it easier to protect web applications against content injection attacks such as cross-site scripting (XSS). CSP allows declaring trusted sources of content by giving browsers strict rules about which scripts, styles, images, or other resources can be loaded. […]
CUDA-L2: Surpassing cuBLAS Performance for Matrix Multiplication Through RL
🥳 Introduction CUDA-L2 is a system that combines large language models (LLMs) and reinforcement learning (RL) to automatically optimize Half-precision General Matrix Multiply (HGEMM) CUDA kernels. CUDA-L2 systematically outperforms major matmul baselines to date, from the widely-used torch.matmul to state-of-the-art NVIDIA closed-source libraries (cuBLAS, cuBLASLt-heuristic, cuBLASLt-AutoTuning). Paper Speedup of CUDA-L2 over torch.matmul, cuBLAS, cuBLASLt-heuristic, and […]
Plane crashed after 3D-printed part collapsed
A plane crashed after a 3D-printed part softened and collapsed, causing its engine to lose power, a report has found. The Cozy Mk IV light aircraft was destroyed after its plastic air induction elbow, bought at an air show in North America, collapsed. The aircraft crashed into a landing aid system at Gloucestershire Airport in […]
The “confident idiot” problem: Why AI needs hard rules, not vibe checks
We cannot fix probability with more probability. We need to re-introduce “assert”. The Lie We have all been there. You build an agent. It works perfectly in the demo. You deploy it. And then, on a Tuesday at 3 PM, it decides that the URL for the API documentation is api.stripe.com/v1/users (a 404), but it […]
The RAM Shortage Comes for Us All
Memory price inflation comes for us all, and if you’re not affected yet, just wait. I was building a new PC last month using some parts I had bought earlier this year. The 64 Gigabyte T-Create DDR5 memory kit I used cost $209 then. Today? The same kit costs $650! Just in the past week, […]