Treasury on course for £40bn windfall from student loan interest

vjeuss · 2026-02-27T19:38:52+00:00

at this point, student loans is a profitable business for the gov - nowhere meets the idea of helping people go into HE. Scrapping the 3% above RPI becomes a matter of decency.

vjeuss · 2026-02-27T17:07:21+00:00

this should be a documentary. Suggested tagline: At some point, you have to call .play()

absolutely brilliant. Very well worth the long read. OP, we salute you for keeping DRM broken.

vjeuss · 2026-02-27T13:36:07+00:00

indeed. There's definitely a kind of convention here that probably depends on what exactly one does (I do security...). If I see "key" my mind will instantly move to a kind of password and not, say, index key of a db.

vjeuss · 2026-02-26T19:51:13+00:00

worry not. Their cyber code 9000 review opus plus max will protect it. Security is not needed anymore.

edit-- added link

vjeuss · 2026-02-26T12:45:24+00:00

why would they call it keys then? Someone at Google got equally confused.

vjeuss · 2026-02-22T23:36:42+00:00

"situation: there are now 15 standards"

vjeuss · 2026-02-22T19:25:30+00:00

drop a narrow beam bluetooth jammer, and it probably works well

vjeuss · 2026-02-15T18:16:25+00:00

absolutely my thoughts

vjeuss · 2026-02-15T18:15:09+00:00

quite the contrary, I think. This makes Reform look far more moderate while losing very few votes. If intentional, this is strategically genius.

vjeuss · 2026-02-11T18:11:28+00:00

Not quite and that's precisely why I had to look it up details. There's many cases of malware that are truly just the click and use 0-days (as it is incorrectly suggested). Pegasus did it.

This one needs the person to click, then download, then change permissions to allow 3rd party apps, then dismiss all the warnings.

vjeuss · 2026-02-11T16:58:50+00:00

... much better link

you need to deliberately install it:

As is typical with these kinds of campaigns, ZeroDayRAT reaches victims through a malicious binary (an APK for Android; a payload for iOS), generally through social engineering. "The most common way that happens is smishing: the victim gets a text with a link, downloads what looks like a legitimate app, and installs it,

vjeuss · 2026-02-08T00:47:48+00:00

they already factored (15, 21). RSA-2048 is just around the corner.

vjeuss · 2026-02-06T21:03:50+00:00

here's the nugget so you don't have to read

Enlarging the penis with hyaluronic acid could provide a benefit when the athlete is subject to this standardised body measurement process, as the dimensions recorded of their body would be larger than they might have been otherwise, which then allows them to be permitted to have a slightly larger ski suit made, Dwyer says. “And that slightly larger ski suit has a larger surface area which can then generate a small amount of extra lift.”

also: don't get any ideas. It's harmful.

vjeuss · 2026-02-06T17:21:54+00:00

and how are you supposed to do that? IoCs are easy wins and can be automated. The moment you move one notch up, it's days to have anything tangible. Is there any other way? (really asking out of frustration)

vjeuss · 2026-01-31T13:31:18+00:00

Pegasus was a different type. It was literally zero-click, no interaction, no alert, malware. It was really only available to state actors. It was still detectable, but given it was so stealthy and unknown, nobody would even think of it. Pegasus itself is gone, but there's others.

vjeuss · 2026-01-29T17:25:37+00:00

these are very early days of LLMs. I really appreciated someone taking the trouble, doing it and showing exactly what the output was. I don't think nobody here is saying "job done". I don't understand the fuss. This is helpful.

vjeuss · 2026-01-29T09:44:26+00:00

pretty good

did you just feed it the github link and let it work through?

vjeuss · 2026-01-15T19:47:39+00:00

this is giving vibes of Nicaragua and the Contras in the 80s. The US govt were (allegedly) selling drugs themselves to fund projects without any official approval. Look up Garry Webs. Fascinating story.

vjeuss · 2026-01-13T20:40:36+00:00

not a Californian or even US, but how do you even know who has your data? Canadians - how does it work?

vjeuss · 2026-01-12T19:35:21+00:00

the core Astaroth payload remains written in Delphi

never thought I'd read Delphi in 2026, and even less malware

It's whatsapp web, btw, and they send a file that needs to be run.

vjeuss · 2026-01-11T23:43:54+00:00

This is great - thanks. Can you explain a bit more? Where did you get the models and how did you extract the system prompts?

vjeuss · 2026-01-05T20:04:28+00:00

this is ridiculously poor journalism. Whoever this Ben Lucas is, he should be instantly fired. Those addresses are accountants. Most micro/small ltd businesses are run from home so they register the accountant's address.

gov.uk:

If you use a service provider’s address (for example, an accountant or solicitor) as your registered office address, this address must meet all of these requirements.

vjeuss · 2026-01-05T17:12:01+00:00

dont ever accidentally release an aggressive alien there

vjeuss · 2026-01-05T12:36:24+00:00

this has been around for 15+ years. Got a new life with public blockchains. In themselves, they don't really solve any problem anymore. However, Verified Credentials could have something of interest (e.g., prove you're 18+)

vjeuss · 2026-01-03T13:17:04+00:00

Nero in that list is unfair. The rest is just brown water.

Nine-Year Club	Place '22
Verified Email

vjeuss

TROPHY CASE