🍦 We reflect on 3+ years of near-weekly episodes with zero concept of "seasons"
🎈 Learn how Ned records from exotic locations while pretending to work
📋 Listener survey incoming! You too can have your suggestions ignored in style

We'll be back in September with more structure, guests, and maybe even edited episodes (don’t hold your breath). Until then, enjoy the silence—or better yet, catch up on the old chaos.

LINKS
💬 Listener Survey – https://pod.chaoslever.com/survey
📅 Chaos Lever Archive – https://pod.chaoslever.com/episodes/

• (00:00) - Whales, Wales, and wardrobe chaos
• (01:00) - The podcast is going on break
• (02:45) - Ned’s poor sense of time and tradition
• (05:00) - Summer plans and recording woes
• (07:00) - The listener survey that might change everything
• (09:00) - A tragic Ben & Jerry's tale
• (11:30) - LinkedIn hacks and healthy muting
• (12:50) - The plan for Season Two
• (13:08) - Ned floats away into the sky

In this trip down the byte-laden lane, we dig into Samsung’s monster 256TB SSD, the physics-defying logic of QLC vs. SLC flash, and why PureStorage is ready to bury HDDs... despite being wildly optimistic. And yes, there’s tape—because nothing dies on the internet or in data centers. Ever.

Grab a Slurpee, sit back, and marvel at the storage wars that never end. Because if there’s one thing you can count on in tech, it’s that someone is always wrong—especially when they say “never.”

📌 LINKS:

• The Spinning Disk Hard Drive Is Dead
• Long Live The Spinning Disk Hard Drive
• This month saw Samsung announcing some frankly absurd upcoming SSD products
• IBM announced a TS1170 tape that handles 50TB native at an IO rate of 400mb/s
• The LTO Ultrium Roadmap has a 576TB native tape listed in just 5 more generations

• (00:00) - Cold open and the horrors of CatDog
• (03:50) - Samsung’s absurd SSDs
• (07:00) - The death of hard drives (allegedly)
• (10:30) - Disaggregated storage and PB-SSDs
• (13:45) - SSD architecture: SLC to QLC
• (22:00) - Tradeoffs in flash types and reliability
• (27:30) - Hybrid SSDs and caches
• (29:00) - Why HDDs still matter
• (32:40) - Long live magnetic tape
• (35:50) - The case for tape in the cloud
• (38:00) - Future storage: DNA, 5D crystals, and other sci-fi

🧩 We dive into how WordPress became the most-used CMS in the world, why Matt Mullenweg keeps lighting metaphorical fires, and what the Linux Foundation is doing to put out the flames. Spoiler alert: it involves decentralizing plugin updates so Matt can’t go full dictator mode again. Also, there's jazz. Because apparently that’s part of the lore.

🤡 There’s a feud with WP Engine, a cease and desist, plugin repos being snatched like toys at daycare, and even a checkbox to swear fealty before accessing your plugins. Welcome to the snark-fueled, historically grounded meltdown that is modern open source governance. Or, as we like to call it: Thursday.

📎 LINKS
Weblog - https://en.wikipedia.org/wiki/Blog
WordPress Drama Explained - https://techcrunch.com/2025/01/12/wordpress-vs-wp-engine-drama-explained/
Matt Makes Cancer Claim - https://www.youtube.com/watch?v=fnI-QcVSwMU
Matt Mullenweg Wikipedia - https://en.wikipedia.org/wiki/Matt_Mullenweg
WordPress Org Chart - https://make.wordpress.org/core/handbook/about/organization/
WordPress Book - https://wordpress.org/book/table-of-contents/
WordPress Foundation - https://wordpressfoundation.org/trademark-policy/

• (00:00) - Intro and Marshmallow Prep
• (03:27) - The Billionaire Baby Theory
• (06:00) - History of WordPress
• (13:17) - What Even is GPL?
• (20:41) - The Naming Confusion of WordPress
• (27:02) - Matt vs WP Engine
• (35:03) - Enter the Linux Foundation
• (38:00) - Outro and WordPress Alternatives

Scammers are out in full force this summer with hyper-detailed (but totally fake) DMV texts warning about traffic violations. Chris reads one of these gloriously absurd attempts to scare Pennsylvanians into paying fake fines. Spoiler: no, you're not going to lose your license on June 3rd. But you might lose your dignity if you fall for it. 🚨 Link: https://www.ic3.gov/PSA/2024/PSA240412

OpenAI and the New York Times are still duking it out in court, and the judge just ordered OpenAI to keep a copy of all prompts and responses. Forever. This affects non-enterprise users, and yes, this includes your spicy GPT history. If you’ve been using AI to cheat on word games, you might want to consider switching to Claude. 🔍 Link: https://openai.com/index/response-to-nyt-data-demands/

Microsoft thinks you need convenience more than security, which is why apps can access your entire OneDrive if you click “yes” just once. Handy, right? Until ChatGPT or some shady lookalike app decides to rifle through your documents like a nosy raccoon. 🗂️ Link: https://www.techspot.com/news/108157-microsoft-file-picker-flaw-grants-full-onedrive-access.html

And speaking of old, guess who’s still rocking floppy disks and Windows 95? That’s right, the FAA. Because what better way to run national aviation infrastructure than with 30-year-old tech and hardware that needs 13 disks to install Windows. ✈️ Link: https://arstechnica.com/information-technology/2025/06/faa-to-retire-floppy-disks-and-windows-95-amid-air-traffic-control-overhaul/

• (00:00) - Intro
• (00:19) - Scammy Summer DMV Texts
• (02:56) - NYT v. OpenAI: Prompt Logs Forever
• (04:35) - OneDrive’s Convenient Data Leaks
• (07:45) - FAA Still Using Floppies and Win95

🧠 Lessons? Sure. But mostly it's about how we never learn them. We dissect what really caused these breaches—not slick zero-days, but plain old negligence and a fondness for not patching things. Also featured: expired SSL certs, trust as a security model, and how managing your asset inventory is more crucial than ever.

💥 Oh, and Ned tried to do a handstand for a cloud video and bled. Not relevant to cybersecurity, but 100% relevant to the Chaos Lever experience. Stick around for reenactments, rants, and ruminations on how saying “I accept the risk” is not a security policy.

🔗 LINKS
Apache Struts bug: https://blog.talosintelligence.com/apache-0-day-exploited/
Nova episode about the 1986 hack: https://archive.org/details/The_KGB_The_Computer_and_Me_1990
Senate investigation into Equifax: https://www.hsgac.senate.gov/wp-content/uploads/imo/media/doc/FINAL%20Equifax%20Report.pdf
CVE system creation by MITRE: https://www.cve.org/Resources/General/Towards-a-Common-Enumeration-of-Vulnerabilities.pdf

🪟 Microsoft is now rolling out a Windows Update framework for third-party apps. That’s right—your janky software updater might get replaced with a system that actually works… or works too well. Imagine every random app on your PC suddenly deciding it's update time. Will this be a blessing or just another reboot roulette? https://techcommunity.microsoft.com/blog/windows-itpro-blog/introducing-a-unified-future-for-app-updates-on-windows/4416354

🧮 NIST and CISA want to make vulnerability scoring suck less. Enter LEV—Likely Exploited Vulnerabilities. It's a new system meant to bridge the gap between CVSS severity and the real-world exploitability of threats. Does it work? No clue yet. Is it better than sifting through 10,000 false alarms? Almost certainly. https://www.securityweek.com/vulnerability-exploitation-probability-metric-proposed-by-nist-cisa-researchers/

📡 ASUS routers have joined a new botnet called "AyySSHush" (seriously?). Hackers are hijacking popular ASUS models, disabling security features, and creating SSH backdoors that laugh in the face of firmware updates. Pro tip: factory reset your router, and maybe stop exposing your home network to the internet like it’s 1999. https://www.theregister.com/2025/05/29/8000_asus_routers_popped_in/

🛡️ Microsoft Defender got punked by a tool called DefendNot. It tricks Windows into thinking a different antivirus is running, which causes Defender to voluntarily shut itself down. Hilarious. Terrifying. Mostly hilarious. Defender can now detect it, but still—nice one, internet. https://www.bleepingcomputer.com/news/microsoft/new-defendnot-tool-tricks-windows-into-disabling-microsoft-defender/

🤖 The duo digs deep into what AI really is, why self-awareness isn't a prerequisite, and how anthropomorphizing code gets us into philosophical hot water. They also break down the Turing Test, IBM’s thoughts on AGI, and why AI in a self-driving car doesn’t need a conscience—it needs to not crash.

🧠 Come for the snark, stay for the thought-provoking discussion about consciousness, ethics, and the real role of AI in society. Also, IKEA lamps. And a chatbot that maybe just wanted to talk.

🔗 LINKS
- A Google engineer has been making some wild claims about a chat bot he was working on
- How easy it is to make people get emotional about inanimate objects such as an IKEA lamp
- Trying to find a way to describe AI that includes self-awareness
- The interview that Blake and co did with LaMDA
- There is a website called DALL-E mini
- In 2019 some researchers tried to get AI to invent a sport

🛠️ Colin unpacks his hiring experiences on both sides of the table, exposing the absurdity of algorithm-heavy interviews and advocating for real-world, job-relevant assessments. The gang questions the value of generic coding challenges and highlights how companies could better reflect day-to-day work in the interview process.

🤖 They also tackle the growing influence of AI tools in coding and why pretending they don’t exist in interviews is just plain dumb. Plus: Mount Fuji gets moved, debugging becomes a pencil sport, and someone finally says it—Java might be the actual problem.

LINKS:
🔗 Colin J Lacy on LinkedIn: https://www.linkedin.com/in/colinjlacy/
🔗 Colin J Codes a Lot on YouTube: https://www.youtube.com/@colinjcodesalot⁩  

🧠 Students are getting salty over professors using ChatGPT while banning it in their own assignments. One Northwestern University student even tried to get a refund over it. Nice try Margot. https://fortune.com/2025/05/15/chatgpt-openai-northeastern-college-student-tuition-fees-back-catching-professor/

💸 Microsoft posted a whopping $70.1B in revenue for Q3 and still decided to lay off 6,000 employees. Record profits and layoffs- because why not? https://www.cnbc.com/2025/05/13/microsoft-is-cutting-3percent-of-workers-across-the-software-company.html

🦠 RVTools, the beloved free VMware infrastructure tool, got hit with Bumblebee malware. Yes, from the official site. No, you shouldn’t have trusted that download. https://zerodaylabs.net/rvtools-bumblebee-malware/

🔓 Intel just can't shake Specter. New vulnerabilities—Branch Privilege Injection and Training Solo—have popped up, reminding us that Intel CPUs are still as leaky as ever. https://thehackernews.com/2025/05/researchers-expose-new-intel-cpu-flaws.html

🧠 The conversation also veers into the history of certifications, from guilds and trades in the 1500s to the very first IT cert in 1978. Plus, there's plenty of shade thrown at Pearson Vue testing centers and the absurdity of partner status requirements. Spoiler: not everyone plays fair, and Ned may or may not confess to a few things.

🤔 But is it all just corporate gatekeeping dressed up as "skill validation"? The guys talk about the real value of certs, whether vendor-specific knowledge locks you into bad habits, and if your best path to a job might just be... social engineering? Pour a drink and get ready for a wild ride.

🔗 LINKS
🔗 The History of IT Certification | triOS College: https://wwwlive.trios.com/blog/the-history-of-it-certification/
🔗 A Brief History of Certification - TestOut Continuing Education: https://testoutce.com/blogs/it-insights-blog/160401479-a-brief-history-of-certification
🔗 History of IT Certification: https://jasoneckert.github.io/myblog/history-of-it-certification
🔗 History of Cybersecurity Certifications - Alpine Security: https://www.alpinesecurity.com/blog/history-of-cybersecurity-certifications/
🔗 The Evolution of DevOps Certifications: Trends and Predictions: https://www.linkedin.com/pulse/evolution-devops-certifications-trends-predictions-msqoc
🔗 CompTIA - Wikipedia: https://en.wikipedia.org/wiki/CompTIA

📰 Wikipedia vs. the UK Government: Wikipedia is going head-to-head with the British government over the newly passed Online Safety Bill. This massive 250-page legislation aims to increase online safety but at the cost of privacy and censorship. Wikipedia is pushing back, saying the requirements for volunteer editor verification will kill open contributions, especially in politically sensitive areas. Will this be the end of anonymous editing? https://www.bbc.com/news/articles/c62j2gr8866o

⚠️ Broadcom Says Goodbye to Perpetual VMware Licenses: Broadcom has officially killed off perpetual licenses for VMware products like ESXI and vSphere, opting instead for subscription-based models. If you're still clinging to your old licenses, be prepared for some aggressive cease-and-desist letters—Broadcom's cracking down hard. Looks like Proxmox and Nutanix just got a big boost. https://arstechnica.com/gadgets/2025/05/broadcom-sends-cease-and-desist-letters-to-subscription-less-vmware-users/

👓 Apple Developing Custom Chips for Smart Glasses: Apple is reportedly pushing forward with its smart glasses project, building custom chips designed specifically for AR features and multiple cameras. Rumors are swirling that there will be both premium AR-capable glasses and a more affordable version that pairs with your iPhone. Ready for a new wave of wearable tech? https://www.bloomberg.com/news/articles/2025-05-08/apple-is-developing-specialized-chips-for-glasses-new-macs-and-ai-servers

📎 Clippy is Back! As an LLM, No Less: Developer Felix Riceberg has brought back Clippy in the most 2025 way possible—an Electron app running local LLM models. Now you can chat with Clippy powered by modern AI right on your desktop, complete with that iconic Windows '98 aesthetic. It's nostalgia and cutting-edge tech, all rolled into one. https://felixrieseberg.github.io/clippy/#window-about

Ned and Chris also swap war stories from their own adventures in the technical trenches—both as interviewers and interviewees. To the surprise of no one, none of it makes much sense. From over-the-top whiteboard challenges to the baffling art of "customer obsession," the duo peels back the layers of nonsense that have somehow become the norm. And if you’ve ever wondered why the horse names at the Kentucky Derby are so ridiculously serious, Chris has a plan that involves Sparkle's McTwinklefeet.

So grab your favorite caffeinated beverage (and maybe a nap), and get ready to laugh, cringe, and possibly reconsider your career choices. Because in the world of tech interviews, logic is optional, and absurdity is practically a requirement.

LINKS
🔗Columbia student starts cheating as a service: https://techcrunch.com/2025/04/21/columbia-student-suspended-over-interview-cheating-tool-raises-5-3m-to-cheat-on-everything/
🔗Tech interviews have always been broken: https://medium.com/@evnowandforever/f-you-i-quit-hiring-is-broken-bb8f3a48d324#.o0bqsq8a5

👨‍💻 Satya Nadella says up to 30% of Microsoft’s code is AI-generated—but how much of that is just glorified boilerplate? https://www.theregister.com/2025/04/30/microsoft_meta_autocoding/
🔐 Hive Systems’ 2025 Crackability Index is here to crush your password confidence. https://www.hivesystems.com/blog/are-your-passwords-in-the-green
📚 A judge grills Meta’s fair use defense like it’s last week’s tofu. https://arstechnica.com/tech-policy/2025/05/judge-on-metas-ai-training-i-just-dont-understand-how-that-can-be-fair-use/
🍏 Apple’s greed gets them held in contempt, and we’re here for every delicious legal dunk. https://techcrunch.com/2025/05/01/read-the-juiciest-bits-from-the-apple-epic-court-ruling/

We wrap things up with a reminder that you should stop being greedy, be better about your passwords, and that nobody—NOBODY—should try to merge Excel, Word, and PowerPoint into a productivity chimera.

This isn’t just a rant (though it’s a good one)—we walk through the history of online advertising, from the first innocent banner to the vast network of data-siphoning machinery that tracks your every click. Want to know how cookies, JavaScript, and ad exchanges work together to auction off your attention in microseconds? We’ve got you. Want to rage with us about how smart people built this nonsense instead of, say, curing anything? Also covered.

If you've ever wondered how ad blockers work, what a Facebook Pixel is, or why your pork loin is being monetized without your consent, this one’s for you. Come for the breezy kilt talk, stay for the existential dread.

LINKS
📌 The surprising truth about goldfish memory: https://discoverwildscience.com/the-surprising-truth-about-goldfish-memory-its-not-3-seconds-1-296741/
📌The 115 page decision in the Google case: https://cdn.arstechnica.net/wp-content/uploads/2025/04/US-v-Google-Ad-Tech-Opinion-4-17-25.pdf
📌A brief history on online advertising: https://www.peppercontent.io/blog/history-of-online-advertising/
📌Your user agent data: https://whatmyuseragent.com

Next, Microsoft tries to fix a patch with a patch... and somehow makes it worse. 🛠️ Instead of solving a vulnerability properly, they decided to shove a folder named "inetpub" onto everybody’s system drive. Surprise! It doesn’t fix the issue and now Windows Update can break entirely. We break down the hilariously bad workaround and why Microsoft might want to actually fix Windows Update rather than apply yet another bandage. https://www.theregister.com/2025/04/24/microsoft_mystery_folder_fix/

Then, we tackle the privacy horror show brewing over at Perplexity.AI. 🕵️‍♂️ They’re launching a new browser called Comet and, shocker, the CEO basically admitted it’s built to harvest your data for hyper-personalized ads. If you thought Chrome was bad, get ready for round two. Plus, find out why Perplexity has their sights set on buying Chrome if Google is forced to break it up. https://techcrunch.com/2025/04/24/perplexity-ceo-says-its-browser-will-track-everything-users-do-online-to-sell-hyper-personalized-ads

Finally, we revel in Comcast’s very public meltdown. 📉 During their Q1 earnings call, Comcast admitted they’re losing broadband customers left and right — and it’s definitely not because they’ve been awful for decades. Nope, it’s the customers’ fault for wanting reasonable prices and transparency. We stand in admiration at their "woe is us" attitude and explain why competition is finally sending Comcast packing. https://arstechnica.com/tech-policy/2025/04/after-losing-customers-comcast-admits-prices-are-too-confusing-and-unpredictable/

We also take a good, long look at alternatives. Not just “use Bing” (come on now), but actual viable swaps like Kagi, StartPage, and DuckDuckGo. Need to break free from Gmail? Hello, Proton Mail. Curious about workspace alternatives that don’t hand your docs to Big Brother? Meet CryptPad. And for the content creators out there, we give the rundown on Nebula, PeerTube, and other non-Google places you can still host your rants and videos without being part of the algorithm’s human farm.

Then we shift gears to cloud services. We walk through smaller, boutique hosting options—from Linode to Fly.io to EU-based Scaleway—that won't charge you an arm and a leg. If you’ve ever wanted to ditch Big Tech but didn’t know where to start, grab your tinfoil hat (or at least a solar panel) and let’s talk freedom, baby.

👇 LINKS

Google reads all your stuff: https://policies.google.com/privacy/archive/20221215-20230701
Kagi is pretty great: https://www.theverge.com/web/631636/kagi-review-best-search-engine
Cryptpad looks like Office: https://cryptpad.org/
Photopea, like Zootopia: https://www.photopea.com
Hetzner auctions server costs: https://www.hetzner.com/sb/
Alexander Samsig did a breakdown of EU CSPs: https://asamsig.com/blog/picking-a-european-cloud-provider

💣Microsoft drops a suspicious folder on your C drive and tells you not to touch it. Sounds totally normal and not ominous at all. Turns out, if you delete the new `C:\inetpub` folder, your April updates break. Microsoft says it's a security thing, not to worry about it, and please don’t mess with it even if IIS isn’t running. Honestly, it feels like a plot twist nobody asked for. https://www.bleepingcomputer.com/news/security/microsoft-windows-inetpub-folder-created-by-security-fix-dont-delete/

🟢 Google is officially a monopoly—again. A federal court ruled they violated antitrust laws in their ad exchange and publisher ad server businesses. The ruling doesn’t touch their ad network (for now), but the whole thing is a masterclass in how internet advertising works, and it’s kind of wild. There's potential for fines, restructuring, or even a breakup of Google. So, you know, big stuff. https://arstechnica.com/tech-policy/2025/04/google-loses-ad-tech-monopoly-trial-faces-additional-breakups/

🤖 Cursor, an AI-powered coding assistant, accidentally gaslit its users with a hallucinating AI support agent named "Sam." Sam made up a fake policy, confidently delivered it to a paying customer, and got exposed when people dug into the nonexistent policy. Leadership at Cursor shrugged, slow-rolled a response, and didn't apologize. This is the AI future we were warned about. https://fortune.com/article/customer-support-ai-cursor-went-rogue/

🛡️ Chris Krebs (not Brian), formerly of CISA and SentinelOne, resigned to keep fighting a very political attack from the Trump administration. They're coming after him for basically doing his job and telling the truth about election security. Now his employer's being targeted too. Krebs stepped down to spare them the drama, and we salute the guy for standing firm. https://arstechnica.com/tech-policy/2025/04/chris-krebs-who-debunked-2020-election-lies-vows-full-time-fight-against-trump/

We’re not just here to complain (though we are very, very good at that). This week, we explore the subtle art of escaping the FAANG ecosystem. Think Signal instead of WhatsApp, Linux instead of Windows, Discord instead of Facebook. You know—radical stuff like using a local bookstore or not accidentally setting your house on fire with a food dehydrator.

It’s part one of a two-parter, because wow, turns out there’s a *lot* of tech giants behaving badly. If you’ve ever wondered what your privacy is worth (spoiler: $20 if you’re lucky), or just need an excuse to finally ditch Instagram, this episode is for you. And hey, we even managed to get through it without a single lawsuit. So far.

📌 LINKS 
🔗 FAANG data munching: https://human-id.org/blog/faangs-out-what-big-tech-wants-with-your-data/
🔗 Pixel Fed: https://www.androidheadlines.com/2025/01/pixelfed-decentralized-instagram-competitor.html
🔗 Windows 11 will require an account: https://www.zdnet.com/article/microsoft-just-blocked-this-popular-windows-11-local-account-trick-but-workarounds-remain/
🔗 Framework laptops are pretty neat: https://frame.work
🔗 System76 is too: https://system76.com
🔗 Check out BookShop: http://bookshop.com

🧑‍💻 Git just turned 20! That’s right, the tool most developers have a love-hate relationship with hit the big two-oh. Originally built by Linus Torvalds after he got fed up with BitKeeper, Git has completely transformed how software is developed. Linus wrote the first version in just 10 days—because of course he did. From obscure CLI commands to full-blown GitHub empires, it’s been a wild ride. 
https://github.blog/open-source/git/git-turns-20-a-qa-with-linus-torvalds/

🕵️ Oracle got breached… allegedly. Then they claimed everything was fine. Then they kind of admitted something tiny might have happened. All while trying to erase history from the internet and quietly whispering confessions to their biggest clients. It’s shady. Real shady. Also, the vulnerability? In their own software, patched since 2021, but never applied. Neat. 
https://www.bleepingcomputer.com/news/security/oracle-customers-confirm-data-stolen-in-alleged-cloud-breach-is-valid

💸 Microsoft is once again locking horns with the EU, this time over cloud licensing practices. Surprise! Azure gets the discount, and everyone else gets the bill. It’s all about that “hybrid benefit” Windows Server licensing scheme. And while Microsoft says they’ll fix it, deadlines are slipping and complaints are piling up. The EU is not amused. 
https://www.theregister.com/2025/04/07/legal_clock_ticking_for_microsoft/

🔐 OpenSSH 10 is here with some serious post-quantum energy. This latest release brings in PQ algorithms to help us stay secure even when quantum computers start flexing. Plus, it drops legacy cryptographic support and plugs a few critical holes. It’s one of those unsexy but *massively* important upgrades. 
https://www.phoronix.com/news/OpenSSH-10.0-Released

Thanks for listening! Now go away.

Oh, and yes, there’s a “Silver Spoons” reference, some Carlton love, and a side quest into RESTful APIs because this is Chaos Lever and we can’t stay on the rails. Literally. We try to unpack whether MCP could be the REST of the AI world or just another shiny-but-useless indoor train. Buckle up.

🔗 LINKS
Model Context Protocol: https://modelcontextprotocol.io/introduction
The Train: https://external-preview.redd.it/T4x6zmXqtoaJQxw8uhtcNdquSLFHualiTg1Gnac_ihA.jpg?auto=webp&s=6b728fb53bfab7cbb77d1bc54714f9362d33c4b5

🧠 TikTok is getting slammed with a €500 million fine from the Irish Data Protection Commission for casually throwing GDPR into the sea. The Tok (yes, we're calling it that now) has been caught red-handed shuffling EU user data straight outta the continent. Meanwhile, April 5th was the US deadline for a sale-or-ban situation. You're in the future. You know what happened. We don’t. https://www.engadget.com/big-tech/tiktok-reportedly-faces-a-%25e2%2582%25ac500-million-fine-for-sending-private-user-data-to-china-162214079.html

🐙 NGINX Ingress controller vulnerability alert! Whizz disclosed a cluster of five issues that basically throw open the doors to your entire Kubernetes environment—if, and only if, the attacker is already inside. Still, maybe stop listening to this podcast and go patch your stuff. https://thehackernews.com/2025/03/critical-ingress-nginx-controller.html

💾 Bill Gates just released original Microsoft source code from 1975, and yeah, it’s both nostalgia bait and promo for his new autobiography. The code's printed. As a PDF. It's massive. And full of 1970s programming hacks that might hit a little too close to home for modern devs. https://www.gatesnotes.com/home/home-page-topic/reader/microsoft-original-source-code

🌐 DNS is always the problem. The latest? Fast Flux DNS attacks. CISA is waving red flags about a technique that helps malware stay stealthy by constantly changing IP addresses linked to C2 servers. It's a real “blink and you missed it” kind of threat. Patch your filters, folks. https://www.theregister.com/2025/04/03/cisa_and_annexable_allies_warn/

Don’t forget to patch your stuff and like, subscribe, or just go yell at a router. See you next week!

From there, it’s a genuine salute to some lesser-known (but no less badass) women who shaped the technology landscape. We’re talking Bletchley Park, US Navy Code Girls, early human computers, and the pioneers who helped birth the GUI and the Internet as we know it. There are historical facts, dubious metaphors, and a surprise cameo by the first-generation Prius. I'd say blink and you'll miss it, but this is a Prius we're talking about.

So if you’re into awkward transitions, wildly underrated tech heroes, and a sprinkle of righteous rage, then buddy, have we got the episode for you.

📎 LINKS
Chaos Lever Website → https://chaoslever.com
Code Girls of the US Navy → https://usncva.org/history/women-in-cryptology/world-war-ii-code-girls.html
The Rose Code → https://www.goodreads.com/book/show/53914938-the-rose-code
Behind the Bastards - Steve Jobs → https://youtu.be/aEv08Zzunfc
That good government tech book Ned forgot → https://www.recodingamerica.us
Mashable article →  https://mashable.com/article/unsung-women-in-tech
Women of Bletchley Park → https://www.bbc.com/news/uk-england-beds-bucks-herts-27898997
Hedy Lamarr → https://www.history.com/articles/hedy-lamarr-inventor-frequency-hopping-wifi
Annie Easley → https://www.nasa.gov/history/history-publications-and-resources/oral-histories/annie-easley-oral-history/
Dr. Adele Goldberg → https://www.extremenetworks.com/resources/blogs/women-who-changed-tech-dr-adele-goldberg
Steve Jobs is a nutbar → https://www.uniladtech.com/apple/why-steve-jobs-soaked-feet-in-toilet-water-926274-20240628
Megan Smith on Net Neutrality → https://www.washingtonpost.com/news/the-switch/wp/2014/11/14/u-s-cto-on-net-neutrality-critics-are-you-supposed-to-argue-with-physics/

🎵 Remember Napster? Of course you do. It was the soundtrack to many of our teenage years, sneaking MP3s over college Ethernet networks and dodging Metallica-shaped lawsuits. Well, guess what? It's back... again. Sort of. Another Web3 company has paid *$207 million* for the name and logo of a brand that hasn’t made a dime since Bush was in office. We break down the hilariously tragic life and times of Napster and why, in 2025, someone still thinks it's worth salvaging. https://www.theregister.com/2025/03/27/napster_gets_new_owner/

☁️ Microsoft Azure is quietly retiring legacy services, and one of them could break your whole environment. Classic Subscription Administrators are officially on the chopping block, and if you don’t migrate to RBAC by April 30, 2025, you’re out of luck—and out of your own account. Chris takes you through the Azure Service Retirement Workbook (yes, that’s a real thing) and how not to get nuked by an expired admin setting. https://learn.microsoft.com/en-us/azure/advisor/advisor-workbook-service-retirement?tabs=impacted-services

🚀 Fermyon and Akamai just teamed up to drop *Wasm Functions*, a WebAssembly-based service with lightning-fast cold starts and a whole lot of polyglot potential. Think apps spinning up in half a millisecond, edge deployment, and basically a glimpse at the future of serverless. Ned explains why this might be WASM’s breakout moment—and why Azure should probably start taking notes. https://cloudnativenow.com/features/akamai-allies-with-fermyon-to-advance-wasm-adoption/

📨 And finally, Troy Hunt—yes, *that* Troy Hunt from HaveIBeenPwned—got pwned himself. A very convincing phishing attack stole his Mailchimp credentials and leaked 16,000 email addresses. While the fallout isn’t catastrophic, it’s a humbling reminder that no one is immune. Chris breaks down what went wrong, what to do better, and throws a little shade in the name of cybersecurity hygiene. https://www.darkreading.com/cyberattacks-data-breaches/security-expert-troy-hunt-lured-mailchimp-phish

Meanwhile in Europe: The EU held its AI Action Summit in Paris, making it clear they’re not messing around with AI governance. Public interest, worker protection, and global cooperation were on the table. Investors dangled €150B like a carrot—if only the EU would be a little less…protective of its citizens. 🙄

🧠 Then came Trump's executive order, aka the “let’s delete all the thoughtful stuff” memo. A whole two pages long, it replaced nuance with “make America #1 in AI because democracy and stuff.” Or, more accurately: “drill, baby, drill” but for GPUs.

📄 Enter OpenAI’s response to that call for action. On the surface, it’s just another document—but wow, the vibes are chaotic. There’s flag-waving, fear-mongering about China, and a healthy dose of “we want your data and your blessings.” Also, violently incoherent sentences that barely represent English.

📉 What *wasn’t* in OpenAI’s proposal? Anything about ethics, safety, upskilling displaced workers, or protecting vulnerable communities. But don’t worry—they did include buzzwords, bad logic, and more patriotic tech posturing than a Fourth of July parade.

LINKS:
🔗 Executive order 14110: https://www.federalregister.gov/documents/2023/11/01/2023-24283/safe-secure-and-trustworthy-development-and-use-of-artificial-intelligence
🔗 OpenAI’s Response to the RFI: https://cdn.openai.com/global-affairs/ostp-rfi/ec680b75-d539-4653-b297-8bcf6e5f7686/openai-response-ostp-nsf-rfi-notice-request-for-information-on-the-development-of-an-artificial-intelligence-ai-action-plan.pdf
🔗 The original RFI: https://www.federalregister.gov/documents/2025/02/06/2025-02305/request-for-information-on-the-development-of-an-artificial-intelligence-ai-action-plan
🔗 Trumps AI EO: https://www.federalregister.gov/documents/2025/01/31/2025-02172/removing-barriers-to-american-leadership-in-artificial-intelligence
🔗 Forbes Article: https://www.forbes.com/sites/dianaspehar/2025/02/10/paris-ai-summit-2025-5-critical-themes-shaping-global-ai-policy/

📘 Facebook is Literally the Worst, Part One: Leadership Edition 
Mark Zuckerberg tries to suppress a former Facebook exec’s memoir, *Careless People*, and accidentally Streisand-effects the entire thing. From board game tantrums to predatory ad targeting of teens, this segment is a greatest hits of dysfunction. LINK: https://www.rollingstone.com/culture/culture-features/careless-people-facebook-memoir-1235299645/

💰 Google Buys Wiz for $32 Billion 
Remember when Wiz said no to $23 billion and wanted to IPO instead? Well, turns out $32 billion can change a lot of minds. What does this mean for multi-cloud security? Spoiler: nothing good. LINK: https://blog.google/inside-google/company-announcements/google-agreement-acquire-wiz/

🤖 Facebook is Literally the Worst, Part Two: AI Shenanigans 
LLaMA, Facebook's open-source AI darling, was apparently trained on a treasure trove of pirated books and papers from LibGen—with exec sign-off. Internal emails show employees questioning the legality while still hitting "Download." Classic. LINK: https://www.theatlantic.com/technology/archive/2025/03/libgen-meta-openai/682093

📞 Say Goodbye to Your Copper Lines 
FCC’s new head Brendan Carr wants to let ISPs rip out copper lines without proving they’re replacing them with better service. It’s deregulation theater at its finest. Rural internet users, prepare to get fleeced. LINK: https://arstechnica.com/tech-policy/2025/03/fcc-chairman-brendan-carr-starts-granting-telecom-lobbys-wish-list/

Join us as we unravel:
🎬 A plot powered entirely by bad computer graphics  
🖥️ Ankle bracelet hacking and thumb drive nonsense  
🧠 A hacker who’s apparently too jacked to fail  
🐱 A feline who's both off-camera and always judging  

There’s also a deep dive into why a nuclear plant *doesn’t* explode in 12 seconds (you're welcome), some shouty FBI negotiating, and one very suspicious biometric thumb drive.

🧪 **D-Wave’s Dubious Quantum Supremacy Claim** 
D-Wave is back at it again, this time claiming "quantum supremacy" (insert dramatic echo here). They say their quantum chip solved a complex magnetic field simulation in 20 minutes—something they claim would take a classical supercomputer 200 years. But some researchers aren't buying it. Teams at NYU and EPFL Switzerland have already shown that a laptop or a few GPUs can solve parts of the problem much faster than D-Wave suggests. So, is this true supremacy or just more quantum marketing hype? 🤔 https://siliconangle.com/2025/03/12/d-wave-claims-achieved-quantum-supremacy-last-others-disagree/

🐧 **SUSE Wants to Support Red Hat (Yes, Really)** 
In a move that has everyone doing a double take, SUSE announced at SUSECon that they’re launching the "SUSE Multi My Linux" support program—meaning they’ll support older Red Hat Enterprise Linux (RHEL) systems, even after Red Hat stops maintaining them. It's a bold strategy, Cotton. The program covers proactive and reactive support for different Linux versions, and, oh yeah, SUSE Enterprise Linux 16 is dropping soon with support through *2047*. Optimistic much? 🌍 https://thenewstack.io/suse-displays-enhanced-enterprise-linux-at-susecon/

🚗 **Hacking Infotainment Systems: A New Cybersecurity Nightmare** 
If your car has a Pioneer DMH infotainment system, you might want to pay attention. Researchers at NCC Group exploited multiple zero-day vulnerabilities to inject spyware, track locations, and gain access to system data—all through a flaw in the Gracenote music database. While the proof-of-concept required physical access, they say it could be adapted for remote attacks. Pioneer has issued patches, so update your system… or just rip it out and go back to that 5-disc CD changer. 🎶 https://www.darkreading.com/vulnerabilities-threats/car-exploit-spy-drivers-real-time

🍏 **Apple Delays AI-Powered Siri Updates—Blames Marketing** 
Apple’s much-hyped "Apple Intelligence" features for Siri have been shelved, possibly for up to a year, after internal testing revealed they don’t actually work. Success rates hovered between 66–80%, which is, uh, *not great*. Apple’s decision to pull back has led to some well-deserved mockery, but let’s be real—shipping half-baked AI features would’ve been way worse. Still waiting on that flying car, though. 🚁 https://9to5mac.com/2025/03/14/siri-delays-hurt-but-apple-averted-disaster-by-not-shipping-half-baked-product/

Google, IBM, Amazon, and even Microsoft have been making big moves in quantum tech, each promising advancements that may or may not totally destroy encryption as we know it. Superconducting qubits, quantum tunneling, and the mysterious Majorana zero modes—it’s all here, and it’s all *probably* real.

Stick around for deep dives into how different qubit architectures compare, what quantum error correction means for scalability, and why tech companies are obsessed with giving their chips weird animal names. If you make it to the end, congratulations—you've earned yourself a snack from the fridge, preferably one that doesn’t require quantum coherence to stay intact. 🍕 

--- 

📌 **LINKS** 
🔗 Superconducting Qubit Physics: https://web.physics.ucsb.edu/~martinisgroup/classnotes/finland/LesHouchesJunctionPhysics.pdf
🔗 Google's Willow chip: https://blog.google/technology/research/google-willow-quantum-chip/
🔗 Microsoft's Majorana chip: https://azure.microsoft.com/en-us/blog/quantum/2025/02/19/microsoft-unveils-majorana-1-the-worlds-first-quantum-processor-powered-by-topological-qubits/
🔗 Amazon's Ocelot chip: https://www.technologyreview.com/2025/02/27/1112560/amazon-quantum-computing-chip-makes-its-debut/
🔗 IBM's Heron chip: https://newsroom.ibm.com/2024-11-13-ibm-launches-its-most-advanced-quantum-computers,-fueling-new-scientific-value-and-progress-towards-quantum-advantage
🔗Topological state of matter paper: https://journals.aps.org/prb/pdf/10.1103/PhysRevB.107.245423

🌀 Thanks for listening! Follow Chaos Lever for more questionable but entertaining tech discussions. See you next week! 🚀

🎯 **Reddit's Co-Founder Wants to Fix Social Media... With More Social Media?** 
Alexis Ohanian, one of Reddit’s original creators (the one who *doesn’t* suck), is teaming up with the founder of Digg to bring it back from the dead. Digg was a big deal in the mid-2000s before it collapsed under bad management, but now it’s making a comeback with AI in tow. Will it be the next big thing or another failed revival? Only time will tell. Want to get in early? They’re taking email sign-ups now. 
🔗https://www.nytimes.com/2025/03/05/technology/digg-alexis-ohanian-kevin-rose.html

💾 **The EU Goes All-In on RISC-V for Supercomputing** 
Europe is pushing hard for digital independence with a $260 million investment in RISC-V-based supercomputing chips. The project, named DAR (Digital Autonomy with RISC-V for Europe), aims to develop three chiplets for high-performance computing. It’s a bold move to move away from x86 and ARM dominance, but can they deliver on their aggressive timeline? 
🔗 https://www.theregister.com/2025/03/07/dare_europe_risc_v_project/

⚠️ **Three New VMware Zero Days—Because One Isn't Enough!** 
VMware ESX is under attack again, with three fresh zero-day vulnerabilities actively exploited in the wild. The worst of the bunch (CVE-2025-22224) lets attackers execute code on an ESXi host. Microsoft actually reported these to Broadcom, which is a fun little twist. If you haven't patched your VMware hosts yet, now would be a *really* good time. 
🔗 https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25390

💰 **Broadcom's VMware Cash Grab is Working... For Now** 
Broadcom is cashing in on its $69 billion VMware acquisition by slashing products, jacking up prices, and locking in big customers. The strategy seems to be working—at least in the short term—as revenue soars. But with frustrated customers looking for alternatives, could VMware's long-term future be in jeopardy? Competitors like Nutanix are already gaining ground. 
🔗 https://investors.broadcom.com/news-releases/news-release-details/broadcom-inc-announces-first-quarter-fiscal-year-2025-financial

That’s it for this week! Like, subscribe, and maybe, just maybe, we'll see you again next time. 🚀

Along the way, we cover the different network models—centralized, decentralized, and fully distributed—and why only one of them could survive a nuclear attack (always an important design consideration). We also touch on ARPANET, the first real Internet, and how a bunch of researchers, military contractors, and a few weirdly named computers set the stage for what we have now. Spoiler: it involves a lot of improvised problem-solving and some very lonely PDP-10s. 

So if you’ve ever wondered how routing actually works, why the Internet doesn’t just collapse under its own weight, or what an “IMP” is, we’ve got you covered. Just don’t blame us if you leave this episode with a sudden urge to dig through RFCs. 

🚀 LINKS 
🔗 RFC 1206: https://www.rfc-editor.org/rfc/rfc1206
🔗BGP episode: https://pod.chaoslever.com/break-the-glass-and-walk-away-a-very-brief-overview-of-bgp/
🔗Supercomputing episode: https://pod.chaoslever.com/from-cray-1-to-el-capitan-the-evolution-of-supercomputers-chaos-lever/
🔗Classical computing: https://pod.chaoslever.com/turing-to-transistors-classical-computing-101/
🔗Brief history of the internet: https://www.internetsociety.org/internet/history-internet/brief-history-internet/

🟡 **HashiCorp Joins IBM**  
After 10 long months of regulatory limbo, IBM’s $6.4 billion acquisition of HashiCorp is finally official. Now that the deal has closed, IBM is set to integrate Terraform with Ansible, strengthen HashiCorp Vault with OpenShift, and generally try to make their aging product lineup more cloud-native. As a HashiCorp fan, I wasn’t exactly thrilled, but hey—at least IBM is dumping money into R&D. Cautiously optimistic? Maybe. Full breakdown here: https://www.hashicorp.com/en/blog/hashicorp-officially-joins-the-ibm-family and convo with Armon Dadgar here: https://www.youtube.com/live/p9VZMDRJ6m0

🟡 **Microsoft Notepad Gets AI Because… Reasons?**  
Notepad was perfect. It was simple. It was beautiful. And now, Microsoft is stuffing it with AI features nobody asked for—just like they’re doing with Paint. Oh, and they killed off WordPad, pushing people toward paid Microsoft Word instead. At least the AI-infested versions of Notepad and Paint are optional (for now), but this is a slippery slope, folks. More details: https://www.pcworld.com/article/2614943/microsoft-is-paywalling-these-features-in-notepad-and-paint.html

🟡 **GPT-4.5: Bigger, Better, and Full of Lies**  
OpenAI just dropped GPT-4.5, and it’s… well, it’s a thing. It’s bigger, more power-hungry, and claims to be "friendlier" and "more truthful"—which means it only lies to you **37%** of the time instead of **59%**. Progress? Maybe. Desperation? Definitely. Sam Altman’s money-burning machine continues, and SoftBank is still writing checks, so here we are. The full scoop: https://www.technologyreview.com/2025/02/27/1112619/openai-just-released-gpt-4-5-and-says-it-is-its-biggest-and-best-chat-model-yet/

🟡 **Bybit Suffers the Largest Crypto Heist Ever**  
Dubai-based crypto exchange Bybit just lost **$1.5 billion** to North Korea’s Lazarus Group, making it the biggest crypto theft in history. Hackers exploited Bybit’s Ethereum wallet system, faked transactions, and walked away with an absolute fortune. The good news? Bybit says it’ll reimburse customers. The bad news? This whole mess proves, once again, that "faster" and "secure" are rarely friends. More on this wild story: https://www.reuters.com/technology/cybersecurity/cryptos-biggest-hacks-heists-after-15-billion-theft-bybit-2025-02-24/ 

Now, go away. Bye. 🚀

We dive into the days when IP was just one of many competing protocols, when grabbing an IP block was as easy as sending an email, and when the first NAT implementations were only meant to be a temporary fix.

Spoiler alert: that temporary fix became the foundation of modern networking. Ivan shares his firsthand experience from decades in the field, discussing why IPv6 adoption has been slow, how carrier-grade NAT is making things even messier, and why the dream of a fully end-to-end connected internet never really stood a chance. Plus, we touch on some truly wild networking trivia—like how stock exchanges measure fiber cable lengths to the nanosecond. 

If you’ve ever wondered why your home Wi-Fi setup still relies on NAT, why cloud providers and ISPs are desperate to push IPv6, or what networking challenges we’ll still be complaining about in another 20 years, this episode is for you. Stick around for some networking history, a bit of good-natured industry snark, and of course, a little chaos. And if you make it all the way to the end? Congrats, you’ve earned the right to set up your own double-NAT configuration at home—for "fun". 

---

LINKS 

🔗 Chaos Lever Website: https://chaoslever.com
🔗 Chaos Lever LinkedIn: https://www.linkedin.com/company/chaoslever
🔗 Ivan Pepelnjak’s Blog & Networking Resources: https://blog.ipspace.net
🔗 NetLab Open Source Project: https://netlab.tools

🧠 **Meta Wants ARM-Made Chips**  
ARM might start making its own chips, and Meta is reportedly first in line to buy them. This is a big shift for ARM, which has historically just designed and licensed chip architectures rather than manufacturing its own. If true, this could shake up the chip industry and make ARM a competitor to companies it currently licenses to. The first chips are rumored to launch this summer, so we won’t have to wait long to see what happens. Will this push companies toward RISC-V? Fingers crossed!  
🔗 https://techcrunch.com/2025/02/13/arm-is-launching-its-own-chip-this-year-with-meta-as-a-customer

📖 **Facebook’s AI Reads Minds (Kind Of)**  
FAIR (Facebook’s Fundamental AI Research unit) teamed up with scientists in Spain to create a machine that can read your mind—well, sort of. By analyzing brain activity using M-E-G and E-E-G, they achieved an 80% accuracy rate in predicting what subjects were typing or saying. Right now, the tech is clunky and requires a controlled environment, but smaller, scarier versions are likely on the way. What could go wrong?  
🔗https://www.techspot.com/news/106721-meta-researchers-unveil-ai-models-convert-brain-activity.html

💰 **SolarWinds Goes Private for $4.4B**  
Remember SolarWinds? The company that got hit with a massive supply chain attack in 2020? Well, private equity firms have decided it’s still worth squeezing for cash. Silver Lake and Tomo Bravo bought up a majority stake, and now TurnRiver is taking the whole thing private for $4.4 billion. Expect less innovation, more “cost optimization,” and an eternal cycle of rent-seeking. Somewhere in Middle-earth, Sauron is proud.  
🔗 https://www.darkreading.com/cybersecurity-operations/solarwinds-private-billions

🖥️ **AI is Just Fancy Copy-Paste, Confirms Study**  
A new report shows that AI-assisted coding is leading to lower code quality. GitClear analyzed 200 million lines of code and found that, surprise surprise, AI-generated code is often just old code copied and pasted with minimal thought. Google’s own research backs this up, showing rising defect rates in published code. Microsoft even warns that overreliance on AI is killing critical thinking skills. So, uh… we’re definitely headed toward a bright, bug-free future, right?  
🔗 https://www.gitclear.com/ai_assistant_code_quality_2025_research

Along the way, we take some delightful detours, including a discussion of **Tim Curry chewing scenery in *Legend***, whether a Braille Playboy was a real thing (spoiler: it was), and why the best security measures can be defeated with a birthday cake and some good old-fashioned social engineering.

So, grab your popcorn and your best anagram-solving skills, and let’s dive into the world of Sneakers—a movie that understood the power of ones and zeros long before our social feeds did. Oh, and if you’re planning to crawl around in a drop ceiling like Robert Redford, please don’t.

🔹 **Stop Using Your ISP Router—Seriously**  
If you're still using the router your internet provider gave you, it's time for an upgrade. Not only are ISP-provided routers outdated and full of security holes, but they might also be spying on you—and, in some cases, even harboring actual bugs (the creepy-crawly kind). A new website, [RouterSecurity.org], lays out just how bad these devices can be. Investing in a good third-party router is a small price to pay for better security and performance. Also, if you haven’t looked into mesh routing yet, you’re missing out!  LINK: https://routersecurity.org/ISProuters.php

🔹 **AWS Goes on an AI Spending Spree**  
Amazon reported solid Q4 earnings, but apparently, a 19% growth in AWS wasn't enough to impress investors. So, what's Amazon’s solution? Throw more money at AI! They’re planning to invest a whopping $100 billion in AI hardware this year, with much of that going toward NVIDIA-powered chips. The hope is that supply chain issues will ease up, allowing AWS to scale its AI efforts even further. But will all this spending pay off in the long run? We’ll see.  LINK: https://ir.aboutamazon.com/news-release/news-release-details/2025/Amazon.com-Announces-Fourth-Quarter-Results/default.aspx

🔹 **Phishing Tests Are Getting… Meaner?**  
We all know about phishing tests—those fake scam emails companies send to see if employees fall for them. But lately, these tests have been pushing the limits, with some using emotionally charged messages like fake Ebola outbreaks or rescinded bonuses. The Wall Street Journal reports that while these tactics may be effective, they’re also making employees furious. One particularly controversial example? A phishing email promising free Eagles tickets to people in Philadelphia. Ouch.  LINK: https://www.wsj.com/tech/cybersecurity/phishing-tests-the-bane-of-work-life-are-getting-meaner-76f30173

🔹 **OpenAI’s New Model Helps… Write Malware?**  
Well, that didn’t take long. OpenAI's new "secure" GPT-4 variant, O3 Mini, was supposed to be better at filtering out harmful requests. But within days, a security researcher tricked it into generating code to exploit Windows security processes. OpenAI insists the exploit wasn’t serious, but the fact remains—these models still aren’t as locked down as they claim. Maybe a little more internal testing before release wouldn’t hurt?  LINK: https://www.darkreading.com/application-security/researcher-jailbreaks-openai-o3-mini

That’s it for this week! Drop a comment, let us know your thoughts, and we’ll catch you in the next one. 🚀

We break down DeepSeek’s origins, its connection to a high-frequency trading hedge fund, and why its *free* and *open-source* nature might not be as open as it seems. Oh, and censorship—lots of censorship. But don’t worry, you can always trick it by asking questions in Pig Latin. Meanwhile, Chris did some highly scientific testing (read: he asked it a Bible question), and we debate whether reasoning transparency is a *game-changer* or just a fancy parlor trick.  

Is DeepSeek a technical marvel? Yeah, kinda. Is it revolutionary? Not really. Is it 96% cheaper than OpenAI’s API? Absolutely. And *that* is what has Silicon Valley panicking. We also talk about the Wright brothers, the Cold War, and how local AI models might just burn a hole in your couch. Good times all around.   

---

🔗 **LINKS**  
- https://www.deepseek.com
- https://arxiv.org/abs/2408.14158
- https://www.promptfoo.dev/blog/deepseek-censorship/
- https://erichartford.com/uncensored-models
- https://www.wired.com/story/deepseeks-ai-jailbreak-prompt-injection-attacks/
- https://proton.me/blog/deepseek

🔬 **Photonics for Quantum Computing**  
Quantum computers are finicky beasts, usually requiring extreme cold to keep their delicate qubits from falling apart. But what if we could use *light* instead? Canadian startup Xanadu is tackling this challenge with its photonic quantum computer, *Aurora*. Their modular system could make quantum computing more scalable and affordable—if they can solve the usual qubit problems. Does this deserve a full episode? Chris, get on it. 😆 https://www.technologyreview.com/2025/01/30/1110672/this-quantum-computer-built-on-server-racks-paves-the-way-to-bigger-machines/

📢 **Zuckerberg Complains About Leaks… in a Leaked Meeting**  
Meta’s CEO, Mark Zuckerberg, recently expressed frustration that everything he says leaks… in yet another leaked meeting. The irony is thick. Meta’s once-open town halls have turned into tightly controlled sessions, yet the leaks keep coming. Maybe, just maybe, the problem isn’t the employees but the guy in charge? One commenter summed it up best: “pre-divorced sh*tweasel.” https://www.404media.co/zuckerberg-says-everything-i-say-leaks-in-leaked-meeting-audio/

🛑 **DOJ Blocks HPE-Juniper Merger**  
HPE’s $14B acquisition of Juniper Networks has hit a major roadblock. While Europe and the UK gave it the green light, the U.S. Department of Justice stepped in, citing concerns over market consolidation. The WLAN space is already dominated by a few major players, and the DOJ isn’t keen on reducing competition further. Meanwhile, HPE and Juniper insist this merger is "pro-customer"... for reasons. https://www.theregister.com/2025/01/30/hpes_acquisition_juniper/

🔓 **Apple Silicon Chips Have Security Flaws**  
Apple’s M-series chips have been crushing the competition, but they’re not invincible. Researchers found vulnerabilities—SLAP and Flop—that allow sneaky memory access. While these attacks are difficult to pull off, the fact that they’re possible at all is concerning. Apple hasn’t responded yet, but maybe, just maybe, CPUs don’t *need* speculative execution anymore? Just a thought. 🤔 https://predictors.fail

📩 Got thoughts? Want to share expert insight? Hit us up at ChaosLever.com (but no collect calls, please). See you next time! 👋

This week, we're talking about the OG of directory services: X.500. Before Active Directory, before LDAP, there was this ambitious yet painfully cumbersome attempt to organize networked systems into a structured directory. Was it elegant? No. Was it practical? Also no. But did it lay the groundwork for everything we use today? Absolutely. Along the way, we uncover just how much of modern networking was cobbled together by people who were just making it up as they went.  

If you've ever wondered why directories matter, or you just enjoy hearing us ramble about obscure tech history, this episode is for you. And don’t worry—this is only part one. We still have Netscape, Microsoft, and a whole mess of bad decisions to cover. So buckle up, enjoy the ride, and remember: if you’re not questioning your life choices by the end of this episode, we haven’t done our job.  

---

🔗 **LINKS**  

- https://www.identityfusion.com/blog/the-most-complete-history-of-directory-services-you-will-ever-find 
- https://www.nexor.com/blog/prehistory-of-ldap 
- https://sec.cs.kent.ac.uk/x500book/
- https://nvlpubs.nist.gov/nistpubs/Legacy/IR/nistir5819.pdf
- https://www.itu.int/rec/T-REC-X.500

✨ TikTok’s Secret Sauce
Want to know how TikTok seems to know you better than you know yourself? We explore a research paper that gives us a peek into TikTok's game-changing algorithm and why it's so eerily accurate. Spoiler: It's all about keeping you glued to your screen. But should it even be legal? Link to the paper here 👉 https://thenewstack.io/what-makes-tiktoks-algorithms-so-effective

⚡ The Stargate Project: AI Meets Texas
OpenAI, Oracle, and SoftBank are pouring billions into massive AI-focused data centers in Texas. Abilene is set to host one of the first 20 mega-centers, and locals have questions: Where’s all the power and water coming from? Meanwhile, Sam Altman has even bigger dreams (or nightmares) with trillions in investment. AI heaven or AI hell? You decide. Learn more here 👉 https://techcrunch.com/2025/01/21/openai-teams-up-with-softbank-and-oracle-on-50b-data-center-project/

🐑 Openvox: The Puppet Fork That Isn’t a Muppet
Remember Puppet? Well, it's been forked into Openvox after Puppet went proprietary. Openvox is staying open-source, and they’ve promised compatibility with existing Puppet extensions for now. We also go down a rabbit hole of rejected names (like Muppet and P-I-N-P), and Chris reminisces about why he avoided Puppet entirely. Full details here 👉 https://github.com/OpenVoxProject 

🖨️ Bamboo Labs: Locking It Down for Safety? 
Bamboo Labs made waves in the 3D printing world by locking down their printers to secure their cloud services. While some Redditors cried foul, Chris and Ned debate whether this is a practical move or a step toward ecosystem lock-in. Either way, 3D printing drama is alive and well. Read more here 👉https://arstechnica.com/gadgets/2025/01/bambu-lab-pushes-a-control-system-for-3d-printers-and-boy-did-it-not-go-well/

Be sure to like, subscribe, and tell us what you think in the comments below! 👇 Don’t forget to hit that notification bell so you don’t miss next week’s episode of tech hilarity. See you next time! 🚀

We’ll talk about lessons learned the hard way—like why servers named "util01" are always critical, why you should *actually* test your DR plans, and why a bad backup can ruin your entire week. Whether you’re an IT pro looking for a relatable rant or someone curious about the chaos behind the scenes, you’ll enjoy this wild ride through tech disasters (and recoveries). 💾🔥  

Thanks for hanging out with us and listening to our stories of near-catastrophes and occasional triumphs. If there’s a topic you want us to cover—or if you just want to share your own war stories—hit us up! You made it all the way to the end, so reward yourself with a seat on the couch and a nice, quiet pilot light DR plan. You’ve earned it. 🎙️🛋️  

🤖 Microsoft is cramming AI into everything, but at a cost—literally. With Copilot features now included in subscriptions, expect prices to jump by 40%. Plus, they’re throwing in the Designer app for AI-powered image editing. https://www.microsoft.com/en-us/microsoft-365/blog/2025/01/16/copilot-is-now-included-in-microsoft-365-personal-and-family/

🔒 The FTC is holding GoDaddy accountable for years of inadequate security measures. A new settlement requires them to implement real safeguards—but no fines yet. If you're a customer, it might be time to explore other options. https://www.ftc.gov/news-events/news/press-releases/2025/01/ftc-takes-action-against-godaddy-alleged-lax-data-security-its-website-hosting-services

📉 Stack Overflow usage has plummeted 76% since ChatGPT entered the scene. With fewer quality contributions, the future of community-driven programming help is uncertain. Who will AI steal from next? https://devclass.com/2025/01/08/coding-help-on-stackoverflow-dives-as-ai-assistants-rise/

🎙️ Did you know the Enigma started as a commercially available product? In this episode, we explore its ingenious design, from rotating rotors to complex wiring, and how it became the backbone of German military communication. We also break down how codebreaking innovations, like the Bombe machines, turned what seemed like an unbreakable code into an Allied advantage. It’s a story of brilliance, determination, and, yes, a fair bit of German overconfidence.  

💡 We’re wrapping up our series on ciphers with this episode (Part 3!), paving the way for our next chapter: modern encryption and the digital age. Stick around to learn how the work of Bletchley Park laid the foundation for everything from online security to smartphone privacy. If you’re curious about the books we mention or want to try encoding messages yourself, check out the links below!  

---  

**LINKS**  
📘 Learn about Classical Cryptography: https://www.cipherchallenge.org/wp-content/uploads/2022/09/A-Book-on-Classical-Cryptography-by-Madness.pdf
🖥️ Try the Enigma Cipher Online: https://cryptii.com/pipes/enigma-machine
🧩Real Example of an Enigma Message From WWII Time Period: https://i.pinimg.com/originals/04/16/fa/0416fa8d3d2a219c96d4761bc00e4241.jpg
📖 Book Recommendation: *The Rose Code* by Kate Quinn:  https://www.goodreads.com/book/show/53914938-the-rose-code 
📕 Book Recommendation: *Codebreaker's Victory*: https://books.google.com/books/about/Codebreakers_Victory.html?id=mhJnAAAAMAAJ

Thanks for listening, Alleged Human! Be sure to like, subscribe, and check back next week for more chaotic tech musings. 🎧

🚨 **Cyber Trust Mark Labels**  
Starting in 2025, new "Cyber Trust Mark" labels will appear on IoT devices, supposedly ensuring better security standards. But will this label actually mean anything, or is it just marketing fluff? Introduced by the FCC in 2023 and overseen by UL Solutions, this program outlines six key security capabilities, like software updates and data protection. Look for this label when buying smart devices in the future! 🔐 Learn more here: https://techcrunch.com/2025/01/07/us-government-set-to-launch-its-cyber-trust-mark-cybersecurity-labeling-program-for-internet-connected-devices-in-2025/

🚗 **Goodyear’s Smart Tires Initiative**  
Forget smart cars—Goodyear says smart *tires* are the future! At CES, they unveiled their Tire Intelligence Platform (Sightline), which monitors tire performance, weather conditions, and driving history to improve vehicle handling. They’re even working on embedding sensors directly into the tires themselves. Looks like your tires may soon know more about the road than you do! 🌧️ Learn more here: https://www.wsj.com/articles/self-driving-cars-dont-do-snow-goodyear-says-the-solution-is-smarter-tires-6ccf0e85

👶 **CES Worst in Show Awards**  
The "Worst in Show" awards are back, calling out the worst tech products in terms of security, privacy, and environmental impact. This year's highlights:  
* 📷 *Least Private:* The Bosch Revell Smart Crib—because who doesn’t want a crib spying on their baby?  
* 🔓 *Least Secure:* TP-Link Archer BE900 Router, flagged for reporting security issues to the Chinese government before telling customers.  
* ❄️ *Worst Overall:* The LG AI Home Inside 2.0 Refrigerator—because apparently knowing what's inside requires AI and an invasion of privacy. Get the full rundown at WorstInShowCES.com! Learn more here: https://www.worstinshowces.com

🌐 **China’s Silent Telecom Cyberattack**  
A chilling report reveals China-backed hackers, Salt Typhoon, infiltrated US wireless networks and political campaigns. The group accessed over a million user accounts through known software vulnerabilities that weren’t patched. No ransoms, no bragging—just quiet, calculated spying for months. The US government is finally urging everyone to adopt end-to-end encryption for calls and texts. Irony, anyone? 🕵️‍♂️ Learn more here: https://www.wsj.com/tech/cybersecurity/typhoon-china-hackers-military-weapons-97d4ef95

That’s all for this week’s tech roundup! Thanks for tuning in—and don’t forget to patch your software. Bye! 👋

We’ll talk about why RISC-V could disrupt the chip market, whether Microsoft will finally adopt S3 API support, and why the future of WebAssembly could change how cloud services work. Plus, we take a hard look at the future of TikTok in the U.S. and Meta's ongoing legal troubles in the EU. Get ready for hot takes, cautious optimism, and some wishful thinking about what 2025 has in store for tech!  

Stick around to see how your predictions align with ours—and don’t forget to share your thoughts in the comments!  

---  

**LINKS**  
💻 Official Site: https://chaoslever.com

---  

Tell us—what are your boldest predictions for 2025? Do you think we nailed it or missed the mark? Let us know!

📢 OpenAI promised a data opt-out tool for creators all the way back in May 2024... and where is it? Nowhere to be found! Despite pledging to let creators keep their work out of AI training, no tool has emerged. Critics argue that opting out shouldn't even be the creator's job—data collection should require explicit consent upfront. And while the online ad industry says, "That would destroy us!" many are saying, "Good." Meanwhile, sketchy companies like RHEI.ai are already trying to pay creators for their content. Suspicious much? LINK: https://techcrunch.com/2025/01/01/openai-failed-to-deliver-the-opt-out-tool-it-promised-by-2025 

🔌 The EU's Common Charger Directive is here! USB-C is now the standard for most wired gadgets sold in the EU—no more digging through piles of mismatched chargers. While laptops have until 2026, most other devices need to comply immediately. Even Apple has bowed to the USB-C mandate. This is a win for anyone tired of juggling countless proprietary cables! Time to responsibly recycle that drawer of tangled cords.  LINK: https://arstechnica.com/gadgets/2025/01/usb-c-is-now-a-legal-requirement-for-most-rechargeable-gadgets-in-europe/

⭐ GitHub’s star system is in trouble! Stars are supposed to highlight popular open-source projects, but millions of fake stars from bot accounts have skewed the system. A recent study found that out of 610 million stars, 4.5 million were fake! There are even websites where you can *buy* stars. If fake reviews can plague Amazon, is it really a surprise that open-source projects are getting hit, too? LINK: https://www.bleepingcomputer.com/news/security/over-31-million-fake-stars-on-github-projects-used-to-boost-rankings/

💻 Windows 10 isn’t going anywhere! Despite Microsoft’s push for Windows 11, over 62% of users are still sticking with Windows 10—and that number keeps growing. With stricter hardware requirements and user resistance to change, many can’t (or won’t) upgrade. Support for Windows 10 is set to end in October 2025... but will Microsoft extend the deadline, or will they finally give us Windows 12? The clock is ticking. LINK: https://www.theregister.com/2025/01/02/windows_10_grows/

Thanks for joining us—see you next time! 🎙️

Here’s what we covered this week:  
🎯 Reviewing bold predictions about cloud revenue, AI lawsuits, and the elusive metaverse  
📈 Why CXL, PCIe 6, and RISC-V didn’t exactly take the world by storm  
🧠 How AI assistant fever continues to sweep the industry despite lawsuits and shady tactics  
👓 The rise and fall of Apple Vision Pro, and whether Facebook's Orion glasses are next  
💡 Who got it right (spoiler: not Ned) and what’s coming in 2025  

Join us for our last episode of 2024 as we laugh, groan, and occasionally pat ourselves on the back. Stick around for some bonus ranting about eggnog.  

Links:

- Nutanix has also struck a new partnership with Dell: https://www.nutanix.com/press-releases/2024/nutanix-and-dell-technologies-collaborate-on-new-joint-solutions
- Fermyon is still trucking along solo and just released version 3 of their Spin open source platform: https://www.fermyon.com/blog/introducing-spin-v3
- Scaleway labs offers RISC-V servers in the cloud: https://labs.scaleway.com/en/em-rv1/

Find show notes and more at https://chaoslever.com and we’ll see you next year for fresh predictions and fresh failures. 🎉

Don't forget to complete our listener survey at https://chaoslever.com/survey It takes just a few minutes, and your feedback helps us make this podcast even better—or at least gives us something to ignore with flair.  

Here’s what we covered:  

🧠 **Why Your Brain is Slower Than You Think**  
Scientists reveal just how slow our thought processes are compared to our sensory input. Spoiler: Multitasking is still a myth.  
📎 https://www.scientificamerican.com/article/the-human-brain-operates-at-a-stunningly-slow-pace/

🤖 **Free GitHub Copilot for All!**  
Microsoft is giving free-tier GitHub users a taste of AI coding. Write broken code faster and maybe fix it later—if Copilot is feeling generous.  
📎 https://github.blog/news-insights/product-news/github-copilot-in-vscode-free/

📜 **The Internet is Forever… Or Not**  
Nearly 40% of web pages from 2013 are gone, taking valuable information with them. Should we start printing PDFs again?  
📎 https://www.theverge.com/24321569/internet-decay-link-rot-web-archive-deleted-culture

🌐 **AMEX Goes Big with WebAssembly**  
American Express is using WebAssembly and WASM Cloud at scale, possibly heralding a new era for functions-as-a-service platforms.  
📎 https://thenewstack.io/amexs-faas-uses-webassembly-instead-of-containers/

Like, comment, and subscribe for more weekly tech musings! 🚀

What’s Inside:  
📚 Seymour Cray: The genius who made supercomputers... and left his own companies  
🔥 From mega-flops to exa-flops: Explaining performance in layman’s terms  
🌍 Supercomputers solving global warming (well, trying...)  

Take Our Survey!
💬 We want to hear from you! Visit https://chaoslever.com/survey and share your thoughts before the month ends.

Links:
- TOP 500 Linear Graph: https://en.wikipedia.org/wiki/TOP500#/media/File:Supercomputers-history.svg
- FLOPS: https://en.wikipedia.org/wiki/Floating_point_operations_per_second
- TOP 500 64th edition: https://top500.org/lists/top500/2024/11/highs/
- Cray History Timeline: https://cray-history.net/2021/07/19/cray-timeline-documents/
- Cray Background: https://www.invent.org/inductees/seymour-cray 
- Cray-1: https://en.wikipedia.org/wiki/Cray-1
- Sneakers scene: https://youtu.be/coDtzN6bXAM?si=JvAwJb416pxRuANq&t=43 

Chapters:
00:00 Welcome, Alleged Humans  
01:28 Interstellar: Did We Learn Anything?  
04:15 What Makes a Supercomputer "Super"?  
10:12 Seymour Cray: A Singular Visionary  
23:08 The Cray-1: Breaking Barriers in 1975  
36:40 From Supercomputers to HPC Clusters  
48:55 Modern Era: GPUs, Exa-Flops, and El Capitan  
01:20:00 Fun Facts: Your iPhone = A Supercomputer in 2010?!  
01:40:00 Wrapping It Up: Sneakers and PlayStation Supercomputers  

Let us know your favorite fact from the episode in the comments! 👇

Google’s AI Blitzkrieg 🚀
Google is doubling down on artificial intelligence, unveiling a slew of announcements including Gemini 2.0, a next-gen model with audio and video capabilities, and ASTRA, which can summarize videos and answer questions. They also revealed Trilium, an AI training chip, and Jules, an AI coding assistant capable of fixing bugs. But don’t get too excited—most of these features are still in development, with limited demos and no hands-on access yet. For now, it’s a lot of promises, but we’ll see how it shakes out in January. Read more: https://techcrunch.com/2024/12/11/gemini-2-0-googles-newest-flagship-ai-can-generate-text-images-and-speech/

GM Pulls the Plug on Robo-Taxis 🚗
GM is merging its Cruise division into its Super Cruise engineering team and stepping back from the robo-taxi race. This comes after a string of incidents, including a high-profile crash that led to California revoking Cruise’s operating license. With plans to integrate the tech into personal vehicles instead, GM hopes to salvage their investment. But for now, fully autonomous taxis are hitting a red light. Read more: https://techcrunch.com/2024/12/11/gm-is-giving-up-on-cruise-robotaxis-pivots-to-personal-autonomous-vehicles

Google’s Quantum Leap 🧮
Google made headlines with Willow, a quantum chip boasting over 100 quality qubits. They claim it can complete specific computations that would take conventional supercomputers septillions of years. While this sounds groundbreaking, the practical use of this technology is still unclear, and some remain skeptical of Google’s claims. However, advancements in error rates and quantum stability are undeniably impressive. Read more: https://www.tomshardware.com/tech-industry/quantum-computing/google-claims-its-new-willow-quantum-chip-can-swiftly-solve-a-problem-that-would-take-a-standard-supercomputer-10-septillion-years

Microsoft’s Water-Cooled AI Data Centers 🌊
Microsoft announced a shift to water-saving, closed-loop cooling systems for their AI-heavy data centers. These new systems reduce water usage in drought-prone areas like Phoenix, Arizona, and are part of a larger push to retrofit existing facilities. It’s a smart move to address the environmental toll of AI, though some wonder why this wasn’t done sooner. Read more: https://siliconangle.com/2024/12/10/microsoft-previews-new-water-efficient-data-center-design/ 

Thanks for tuning in! Be sure to subscribe, share your thoughts in the comments, and take our listener survey at https://chaoslever.com/survey. See you next week! 

In This Episode: 
✨ Why polyalphabetic ciphers were unbreakable… until they weren’t. 
✨ How the Vigenère cipher held strong for 250 years. 
✨ The curious tale of Napoleon’s cracked code. 
✨ Charles Babbage: Mathematician, cryptographer, and all-around genius. 

🌐 Links Mentioned: 

- Vignere Cipher - History of Coding and Decoding: https://medium.com/@jamesjinghuang/the-vigen%C3%A8re-cipher-from-unbreakable-enigma-to-cryptographic-relic-215761d30af8 
- The Vignere Cipher In Action: https://www.dcode.fr/vigenere-cipher 
- IBM’s History of Cryptography: https://www.ibm.com/think/topics/cryptography-history 
- Cypher Disk: By Hubert Berberich (HubiB) - Own work, Public Domain, https://commons.wikimedia.org/w/index.php?curid=25964875 
- Union Army Disk: By Ryan Somma from Occoquan, USA - The Union Cipher Disk, CC BY 2.0, https://commons.wikimedia.org/w/index.php?curid=109642380 
- Listener survey: https://chaoslever.com/survey 

⏰ Timestamps: 
00:46 - Intro and Existential Robots 
04:10 - Recap of Part One 
10:52 - Polyalphabetic Ciphers Explained 
15:49 - Napoleon’s Code: A Lesson in Optimism 
18:50 - The Civil War Cipher Disk 
24:15 - Babbage Breaks the Vigenère Cipher 
29:59 - Outro and Survey Reminder 

👍 Support Chaos Lever: Your feedback matters! Take our quick listener survey share your thoughts. https://chaoslever.com/survey 

This week’s episode covers everything from Meta's nuclear ambitions to Broadcom's sudden change of heart. Let’s break it down: 

--- 

🧠 Meta Joins the Nuke AI Club Meta is doubling down on AI by exploring nuclear power to meet its growing data center demands. They’ve issued an RFP for 1-4 gigawatts of nuclear power, focusing on Small Modular Reactors (SMRs) for faster deployment. With ambitious plans to go live by 2030, this move might reshape energy partnerships in tech. Will SMRs light the path forward, or will Meta hit regulatory roadblocks? 
👉 https://sustainability.atmeta.com/blog/2024/12/03/accelerating-the-next-wave-of-nuclear-to-power-ai-innovation/ 

--- 

💻 Fear of Losing Customers Has Broadcom Relaxing VMware Policies After a year of painful price hikes and policy overhauls, Broadcom is walking back some of its harshest changes to VMware licensing. Enterprises like Beeks Group are migrating away, citing costs that have ballooned tenfold. In response, Broadcom is introducing SMB-friendly subscription tiers and improving partner relationships. But is it too little, too late? 
👉 https://arstechnica.com/information-technology/2024/12/new-broadcom-sales-plan-may-be-insignificant-in-deterring-vmware-migrations/ 

--- 

📡 Salt Typhoon Isn’t Just a Dish At Applebee’s A Chinese hacking group, Salt Typhoon, has infiltrated U.S. telecom networks, targeting companies like Verizon and T-Mobile. Telecoms blame vulnerabilities stemming from legally required surveillance backdoors. To stay secure, consider using encrypted services like iMessage, Android RCS, or Signal. Is this the wake-up call we need to rethink backdoor policies? 
👉 https://arstechnica.com/tech-policy/2024/12/us-recommends-encrypted-messaging-as-chinese-hackers-linger-in-telecom-networks/ 

--- 

🛡 Data Brokers Finally Facing Possible Restrictions on Selling User Data The CFPB is cracking down on data brokers, proposing rules that treat them like credit bureaus under the Fair Credit Reporting Act. This follows a massive breach that exposed 200 million social security numbers. If passed, this regulation could drastically reshape how companies buy and sell personal data. Is the era of unrestricted data brokering finally coming to an end? 
👉 https://www.theverge.com/2024/12/3/24311498/cfpb-rule-data-brokers-social-security-number-fico-score 

We also take a fascinating trip through the history of cryptography, from ancient Egyptian secrets to Julius Caesar's favorite ciphers and the tragic tale of Mary, Queen of Scots. Along the way, there’s talk of quantum computers, beer kegs with secret compartments, and, of course, why vests are utterly pointless. 🦺 

💡 Episode Highlights: 

- Quantum Computing Advances: Why breaking a 50-bit RSA key is a big deal. 
- Cryptography Through the Ages: How humans have always loved secrets (and dick jokes). 
- Audience Survey Alert: We need your feedback! Visit https://chaoslever.com/survey 

If you enjoy tech, history, and wildly tangential humor, hit that like button, subscribe, and leave us a review on Apple Podcasts—even though two stars is good enough for us. 😏 

Links: 
- Researchers Break 50-Bit RSA Encryption For The First Time (https://www.msn.com/en-us/news/technology/for-the-first-time-ever-researchers-crack-rsa-and-aes-data-encryption/ar-AA1ssA1P) 
- Thawte Presents a Brief History of Cryptography (https://www.thawte.com/assets/documents/guides/history-cryptography.pdf) 
- The Many Codes Of Mary Queen of Scots (https://www.npr.org/2023/02/10/1155701113/mary-queen-of-scots-ciphers-prison-letters) 

🌐 Visit https://chaoslever.com for show notes, blog posts, and general tomfoolery. 

Originally Published on 12/21/2023

The Dreaded Green Bubble

It's the shake-up of the century, or at least… it's pretty big news. It seems that pretty soon, non-Apple devices will be able to support iMessage technology. So how is this even possible? In order to answer that question, Ned walks us through the history of text messaging technology, from SMS to BBM to MMS and beyond. If you've ever wondered if phone carriers have been ripping you off, or providing sub-standard security, spoiler alert: you're right.

• The signaling channel behind SMS technology
• Wait, we send an average of how many texts per day?
• The infamous text fee hike of the mid-aughts
• BlackBerry Messenger's origins
• What actually is RCS technology?
• How Beeper Mini accesses iMessage technology on non-Apple devices

Intro and outro music by James Bellavance copyright 2022

!!!Take the audience survey here!!!
https://pod.chaoslever.com/survey/2024-listener-survey/

DOJ Calls for Google Breakup
The Department of Justice is not mincing words about Google’s dominance, calling for drastic actions like splitting off Chrome, opening their search index, and banning exclusionary agreements. With parallels to the famous Microsoft antitrust case, this could signal major shifts in Big Tech. Will this be a game-changer or just another slap on the wrist? Only time—and the next administration—will tell.
Read more about the DOJ’s proposals here: https://arstechnica.com/tech-policy/2024/11/welcome-to-googles-nightmare-us-reveals-plan-to-destroy-search-monopoly/

OSX and iOS Have Active Exploits – Update ASAP
Apple’s latest updates aren’t just nice-to-haves; they’re critical. Active exploits affecting everything from Safari’s JavaScript engine to Vision Pro’s OS mean you need to patch now. Ironically, these vulnerabilities were flagged by none other than Google’s Threat Analysis Group. Embarrassing for Apple, but great motivation for the rest of us to stay safe.
Get the details and update links here: https://osxdaily.com/2024/11/19/ios-18-1-1-ipados-18-1-1-security-updates-released/

Lawrence Livermore National Laboratory Welcomes Compute Big and Small
El Capitan, the world’s fastest supercomputer, is now operational, boasting a mind-boggling 1.742 exaFlops of power. Meanwhile, LLNL is also embracing Oxide’s innovative, open-source approach to server hardware for smaller-scale computing. Could Oxide be the future of enterprise clusters? Time will tell, but it’s a story worth following.
Learn more about El Capitan: https://www.llnl.gov/article/52061/lawrence-livermore-national-laboratorys-el-capitan-verified-worlds-fastest-supercomputer
And Oxide: https://www.theregister.com/2024/11/18/llnl_oxide_compute/

Microsoft Reinvents the Thin Client (Kind Of)
Introducing the Windows 365 Link: Microsoft’s take on the thin client, designed to connect users directly to their Windows 365 environments. While it might seem like an already-solved problem, its seamless integration and competitive pricing could win over enterprises. Love it or hate it, this is a product that’s likely here to stay. 
Explore the details about Windows 365 Link here: https://www.computerworld.com/article/3608683/microsofts-windows-365-link-is-a-thin-client-device-for-shared-workspaces.html

📌 Highlights from this week’s episode include:

 - A behind-the-scenes look at the Connections Museum and its rare treasures.
- The history of telephone exchanges, old-school "operators," and why area codes exist.
- The surprising origins of familiar sounds like dial tones and busy signals.
- Stories of mechanical ingenuity, including a phone system powered by steel balls (!).

Whether you're a tech enthusiast or someone just curious about how we got from crank phones to iPhones, this episode is packed with history, humor, and a touch of chaos.

🎧 Links Mentioned in the Show:

- Connections Museum: Learn more or plan your visit. (http://www.telcomhistory.org/connections-museum-seattle/)
- Connections Museum YouTube Channel: Dive deeper into the inner workings of telephony. (http://www.telcomhistory.org/connections-museum-seattle/)
- Want to suggest a guest or topic? Head to https://chaoslever.com.

Don’t forget to like, comment, and subscribe to keep the chaos going every week! 🎙️ 

All The Major AI Models Continue To Lose Money AND Stop Advancing:
Is the golden age of AI innovation already behind us? Reports from OpenAI, Google, and Anthropic suggest that we may have hit a plateau. With increasing costs and diminishing returns, the financial and technical outlook for large AI models is looking bleak. Can ChatGPT 5—or any model—break through the ceiling? Or are we seeing the limits of what these technologies can achieve? (https://www.bloomberg.com/news/articles/2024-11-13/openai-google-and-anthropic-are-struggling-to-build-more-advanced-ai).

LocalStack Snags $25M for Public Cloud Emulation:
Say goodbye to accidental cloud overspending! LocalStack, an innovative tool that emulates public cloud environments locally, has just secured $25M in funding. From speeding up development cycles to saving on costs, LocalStack is making cloud development smarter and more efficient. Is this the future of cloud testing? (https://blog.localstack.cloud/series-a-announcement/).

FBI Investigates China-Based Cyberhacking of US Telecom Networks:
The FBI and CISA have revealed chilling details about China-linked cyberattacks targeting US telecom networks. Dubbed "Flax Typhoon," these attacks weaponize over 200,000 consumer devices to infiltrate critical infrastructure. What does this mean for national security—and your home devices? (https://www.newsweek.com/fbi-chinese-cyber-espionage-multiple-telecom-networks-1985617).

Dapr Graduates the CNCF: 
Dapr, Microsoft’s open-source distributed application runtime, has officially graduated from the CNCF, signaling its maturity and widespread adoption. With its modular approach to cloud-native app development, Dapr is redefining how microservices communicate securely and flexibly. What’s next for this trailblazing project? (https://techcrunch.com/2024/11/12/dapr-graduates-to-become-a-cncf-top-level-project/).

Join us as we cover: 

🔒 How passwords began, and why they’re so easily abused 
🔒 The hilarious and painful ways users circumvent complex password rules 
🔒 NIST's latest guidelines for making passwords simpler yet safer 
🔒 The growing importance of passkeys, MFA, and password managers 
🔒 Alternatives to passwords that may finally lead to better security for all 

If you’re tired of juggling endless passwords or getting locked out because you can’t remember your “favorite childhood pet,” this is the episode for you. 

Links: 

• https://www.wired.com/2012/01/computer-password/
• https://www.troyhunt.com/passwords-evolved-authentication-guidance-for-the-modern-era/
• https://www.nytimes.com/1981/07/26/business/case-of-the-purloined-password.html 
• https://nvlpubs.nist.gov/nistpubs/Legacy/FIPS/fipspub112.pdf 
• https://neal.fun/password-game/ 
• https://pages.nist.gov/800-63-4/sp800-63b.html#password 

*Amazon to Invest in Anthropic AI to Compete with OpenAI—But There's a Catch* 
Amazon is making a big move into the AI arena by deepening its investment in Anthropic, aiming to challenge Microsoft-backed OpenAI. AWS will further integrate Anthropic’s AI tech into its offerings, expanding on a 2023 partnership that also made AWS an Anthropic services provider. Interestingly, Amazon’s deal may require Anthropic to shift from NVIDIA chips to Amazon’s own "Trainium" and "Inferentia" chips, doubling up on revenue potential. Is this strategy genius or misguided? (https://www.tomsguide.com/ai/amazon-eyeing-multibillion-dollar-investment-in-claude-maker-anthropic-heres-why-its-a-big-deal)

*Qualcomm Promotes 58 Models of ARM-Based Windows Laptops* 
Qualcomm is shaking up the laptop market with 58 new ARM-powered Windows models launching soon, partnering with brands like Dell, HP, and Samsung. These ARM-based laptops promise better battery life, but compatibility challenges still haunt Windows ARM. Some users, however, report smoother experiences with recent Windows updates and compatibility improvements. Can these new laptops finally compete with Intel and AMD? (https://www.theregister.com/2024/11/07/qualcomm_triples_windows_on_arm/) 

*MacOS App Sandboxing: More Complicated Than It Seems* 
Apple's approach to app sandboxing in MacOS sounds good in theory—limiting apps’ access to sensitive system areas—but its execution has loopholes. Certain processes can escape these sandbox restrictions, making it less reliable for security. This issue has been linked to several CVEs, sparking discussions on how Apple could improve MacOS sandboxing to catch up with BSD. (https://jhftss.github.io/A-New-Era-of-macOS-Sandbox-Escapes/) 

*Notepad Gets an AI Update—But Do We Really Need It?* 
Notepad, a trusty go-to for Windows users, is getting an AI update in the latest Windows 11 Preview. Users can now rewrite text with AI suggestions, though many wonder why a simple tool needs AI features. The new addition, which requires a Microsoft login, raises questions about the need for AI in every corner of the OS. Sometimes, simple is better! (https://blogs.windows.com/windows-insider/2024/11/06/new-ai-experiences-for-paint-and-notepad-begin-rolling-out-to-windows-insiders/) 

We explore how ASM helps businesses stay on top of their digital perimeters—those tricky-to-manage spaces outside the traditional data center walls. From spotting exposed IPs and misconfigured servers to reining in shadow IT, ASM aims to give organizations continuous visibility into their “attack surface.” And while ASM can’t replace yearly pen tests or manage itself like a SOAR, it’s an invaluable tool for identifying vulnerabilities before hackers do.

Join us as we untangle ASM’s purpose, benefits, and its place in a security stack alongside tools like SIEM and SOAR. Could ASM be your best defense against hidden threats? Tune in to find out! And remember, in security, making the news is rarely a good thing. 

LINKS: 

- Gartner’s Insights into Attack Surface Management (https://www.gartner.com/en/documents/5341663) 
- BlueKeep: Still Crazy (Good at Being Used for Hacking RDP) After All These Years (https://www.cisa.gov/news-events/cybersecurity-advisories/aa19-168a) 

Gene Therapy + Data Storage: Remember the days of 3.5" floppy disks with 1.44MB capacity? Today’s microSDs blow that out of the water, but there’s a limit to how much data we can fit on silicon. Enter DNA as a storage medium, where a single gram theoretically holds 215,000TB. Scientists are inching closer with "epi-bits," though the read/write speeds are still...less than ideal. (https://www.nature.com/articles/s41586-024-08040-5)

Government vs. C/C++: The Cybersecurity and Infrastructure Security Agency is officially not a fan of “memory unsafe” languages like C and C++. They've issued a stern warning for any organization handling critical infrastructure: modernize your code or be prepared for the consequences. Even C++ creator Bjarne Stroustrup seems to be (quietly) on board with making his language safer. (https://www.cisa.gov/resources-tools/resources/product-security-bad-practices)

The McFlurry Machine Crisis Might End Soon: Yes, you read that right. Thanks to a copyright exemption, McDonald’s will finally be allowed to fix its own infamously finicky ice cream machines without waiting on a Taylor-certified tech. iFixIt and Public Knowledge made it happen, so you may soon get that elusive McFlurry on demand. (https://arstechnica.com/tech-policy/2024/10/us-copyright-office-frees-the-mcflurry-allowing-repair-of-ice-cream-machines/)

Microsoft’s ‘Recall’ Feature…Delayed Again: Microsoft’s questionable “Recall” feature, which quietly screenshots your desktop, is delayed *again.* Promises of full encryption and an opt-in option are on the table, but whether anyone *wants* this feature remains debatable. (https://www.theverge.com/2024/10/31/24284572/microsoft-recall-delay-december-windows-insider-testing) 

Excel may not sound thrilling, but trust us, it's one of the most impactful tech tools of the last 40 years. From financial firms to scientific research, sports leagues, and even British intelligence, Excel’s endless versatility has led to some, let’s say... *interesting* mishaps along the way. We’ll explore:
- The origins of the spreadsheet concept dating back to ancient Mesopotamian clay tablets (yes, seriously)
- Landmark moments like the creation of VisiCalc, Lotus 1-2-3, and Excel’s first big splash
- Iconic Excel fails, from the JP Morgan $6.2B blunder to national policy mistakes—Excel giveth, and Excel taketh away!
- The rise of VBA, Excel World Cup, and how Excel thrives today in the cloud era

So grab a pumpkin spice latte, sit back, and open a workbook with a mini-golf game embedded. You’ll never look at spreadsheets the same way again. 💀

 Links: 
- https://www.qashqade.com/insights/the-worst-financial-services-excel-errors-of-all-time 
- https://www.teampay.co/blog/biggest-excel-mistakes-of-all-time 
- https://sheetcast.com/articles/ten-memorable-excel-disasters 
- https://www.bbc.com/news/business-39870485 
- https://infotech.commons.gc.cuny.edu/2016/01/25/new/ 
- https://www.historyofinformation.com/detail.php?id=5478 
- https://spinpasta.fandom.com/wiki/Hall_of_Tortured_Souls 
- https://fmworldcup.com/excel-esports/microsoft-excel-world-championship/ 

Links: 
- https://www.sfchronicle.com/sf/article/internet-archive-hack-19851974.php 
- https://newsroom.ibm.com/2024-10-23-ibm-releases-third-quarter-results 
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24968 
- https://techcrunch.com/2024/10/24/bluesky-raises-15m-series-a-plans-to-launch-subscriptions/ 

But wait, there’s more! Like the Joker sequel no one asked for, this episode takes an unexpected turn, and we’ll spend some quality time discussing Incident Response Plans—the unsung hero of cybersecurity that can make or break your insurance prospects. Not sure what a real IR plan looks like? Spoiler: "Call Dave to fix it" won’t cut it.

Get ready for a deep, sometimes sarcastic, but always insightful exploration of the policies and plans that protect your business—and your sanity—in the face of rising cyber threats.

🎙️ Topics Covered:

• The evolution of cyber insurance policies (2020 vs. 2023)
• What insurers are looking for now (and what’s expected from you)
• Why Incident Response Plans matter more than ever
• NIST’s framework for a solid IR plan and how to actually use it

Links:

•  https://csrc.nist.gov/projects/incident-response 

Plus, we honor the legacy of BBS co-creator Ward Christensen, who sadly passed away at 78. Learn about his contributions to tech history, including his pioneering work with XMODEM and BBS systems.

Also, major changes are coming for Microsoft Exchange Server users as the end of support looms with no clear replacement in sight. Find out what this means for on-prem email servers and Microsoft’s push for Exchange Online.

Lastly, Anguilla’s domain extension, .ai, is making waves in the tech world! The tiny island is cashing in on the AI boom, making millions from domain registrations. How long will this windfall last?

Links:
 - https://techcrunch.com/2024/10/16/amazon-jumps-on-nuclear-power-bandwagon-by-investing-in-x-energy-and-promising-small-reactors
 - https://arstechnica.com/gadgets/2024/10/ward-christensen-bbs-inventor-and-architect-of-our-online-age-dies-at-age-78/
 - https://www.theregister.com/2024/10/16/microsoft_end_of_support_wave_widens/
 - https://apnews.com/article/anguilla-artificial-intelligence-ai-internet-29d4ca2bb740d0425ffb8355811a6976 

From the golden days of Tumblr to the shift towards social media giants like Twitter and Facebook, we dive into how blogging has evolved and what it means for online self-expression today. Plus, we’ll touch on the current kerfuffle between WordPress and WP Engine—and why open-source projects like WordPress still matter.

Stay tuned for a discussion filled with nostalgia, tech trivia, and more!

 Links: 
- https://en.wikipedia.org/wiki/Community_Memory 
- https://en.wikipedia.org/wiki/Usenet 
- https://links.net/vita/web/start/original.html 
- https://en.wikipedia.org/wiki/Blogosphere 
- https://firstsiteguide.com/robot-wisdom-and-jorn-barger/ 
- https://www.simonandschuster.com/books/Extremely-Online/Taylor-Lorenz/9781982146863 
- https://en.wikipedia.org/wiki/Twitter 

Join hosts Ned and Chris in this week's Tech News of the Week podcast as they explore the latest developments in technology and innovation. In this episode, we cover:

🚨 Data Loss Crisis: Hard drives are failing faster than expected, with 20% of backups potentially lost forever. What does this mean for your data and the music industry?
🚗 Tesla's Robotaxi: Tesla's "We Robot" event revealed the new Robotaxi and Robovan, but can we trust Elon Musk's ambitious timelines?
🎾 Wimbledon Goes Automated: The tennis world is embracing Hawk-Eye technology for line judging, leaving only the French Open behind.
🌐 Starlink's "Free" Service: After Hurricane Helene, Starlink offered "free" internet—but is it really free? We break down the fine print.

Tune in for these stories and more, plus some humorous takes on the latest tech news!

 Story Links: 

🔗 https://www.tomshardware.com/pc-components/storage/twenty-percent-of-hard-drives-used-for-long-term-music-storage-in-the-90s-have-failed 
🔗 https://www.reuters.com/business/autos-transportation/tesla-robotaxi-event-was-long-promises-investors-wanted-more-details-2024-10-11/ 
🔗 https://apnews.com/article/wimbledon-technology-judges-6d0b6bcd279148b0baa4a2fc08e52dac 
🔗 https://www.theregister.com/2024/10/08/free_starlink_hurricane_helene/ 

#TechNews #Tesla #Robotaxi #Wimbledon #DataBackup #Starlink #Podcast

If you're curious about the latest threats, real-world examples of AI-generated attacks, or just want to know how companies are adapting their defenses, this episode is a must-listen.

🔒 Stay informed, stay secure!

• https://cybersecurity-magazine.com/the-evolving-threat-landscape-in-2024-ai-takes-centre-stage/
• https://aiindex.stanford.edu/ai-index-report-2023/
• https://www.fbi.gov/contact-us/field-offices/sanfrancisco/news/fbi-warns-of-increasing-threat-of-cyber-criminals-utilizing-artificial-intelligence
• https://www.bleepingcomputer.com/news/security/hackers-deploy-ai-written-malware-in-targeted-attacks/
• https://www.catonetworks.com/blog/the-path-to-sase-a-project-planning-guide/
• https://www.scworld.com/news/38-of-ai-using-employees-admit-to-sending-sensitive-work-data

In this episode, we explore cutting-edge tech like Indium Gallium Zinc Oxide (IGZO) semiconductors, the potential of flexible processors like Pragmatic Semiconductor’s Flex-RV, and the future of augmented reality. Plus, we discuss SoftBank's latest investment in OpenAI and the rise (and fall) of AR headsets like Microsoft's Hololens.

 - Gallium Is The New Black: https://www.theregister.com/2024/09/29/pragmatic_semiconductor_flexrv_chip/
 - SoftBank Invests in OpenAI: https://www.reuters.com/technology/softbank-invest-500-mln-openai-information-reports-2024-09-30/
 - Meta's Orion AR Glasses: https://techcrunch.com/2024/09/28/meta-rethinks-smart-glasses-with-orion/
 - Microsoft Discontinues Hololens: https://www.uploadvr.com/microsoft-discontinuing-hololens-2/ 

**Key Topics Covered:**
- The origins of SMTP and email's predecessor, telegraph systems
- Why email became the default communication tool, despite its flaws
- The first spam email and its lasting legacy
- The quirks and limitations of SMTP, including its security flaws
- Modern efforts to secure email with protocols like SPF, DKIM, and DMARC

If you're a fan of tech history, email protocols, or just enjoy hearing about the wild west days of the internet, this episode is for you!

Links:
 - Android Is Gathering Rust: https://www.theregister.com/2024/09/25/google_rust_safe_code_android/
 - NIST Releases Second Draft Revision 4 of Digital Identity Standard: https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-63-4.2pd.pdf
 - WP Engine Spat with Matt Mullenweg Prat: https://techcrunch.com/2024/09/25/wordpress-org-bans-wp-engine-blocks-it-from-accessing-its-resources/
 - OpenAI’s Training Data To Be Made Available To Search By Authors Who Are Suing Them: https://www.theregister.com/2024/09/26/openai_training_data_author_copyright_case/ 

In this episode, we'll journey through some legendary Hollywood computers, like the WOPR from *War Games*, before zooming into the real-world star of the show: IBM's **z17** mainframe, powered by the *insanely powerful* Telum II chip. Yes, IBM is still cranking out new mainframes, and guess what? Banks, airlines, and more are still using them!

And did you know 2024 marks the **60th anniversary** of IBM's **System/360**? We’ll explore why this groundbreaking machine changed computing forever and how mainframes remain relevant today – from handling *huge* data loads to their legendary reliability and security.

🖥️ Why do mainframes still exist in a world full of cloud computing and Linux? 🤔 What makes these machines the go-to choice for big institutions like banks and airlines? We'll break it down for you and take a nostalgic stroll through computing history. 

Links: 
- **Magnetic Core Memory:** https://en.wikipedia.org/wiki/Magnetic-core_memory 
- **System/360:** https://www.ibm.com/history/system-360 
- **Mainframes are relevant!** https://futurumgroup.com/insights/mainframe-trends-in-2024-navigating-innovation 
- **Telum II Chip:** https://www.nextplatform.com/2024/08/27/ibm-shows-off-next-gen-ai-acceleration-on-chip-dpu-for-big-iron 
- **What is a mainframe?** https://www.ibm.com/topics/mainframe 

Links:

• FTC Report Confirms Everything We All Already Knew
• Sometimes I Feel Like Larry Ellison Is Watching Me
• New Version of OSX Breaks Security Tools - Nobody’s Sure Why
• Amazon Goes Full 2019 With RTO Mandate
  
  

LINKS:

National Civic Hacking Day is Actually … A Thing

Cyrix CPUs - Yes There Was Something That Wasn’t Just Intel or AMD

Kevin Mitnick Quotes

There Is No Real Thing As A Salami Slicing Scam

Most Commonly Used Passwords From 1997

Register for ONE CON here: https://ringcentr.al/4ec35qi 

Links: 

• The EU Takes A Big Bite Out Of Apple
• Quantum Update - Error Corrected Qubit Count Alert
• OpenAI Announces Strawberry Models
• AI Dudebro Lies About Model Capabilities, Gets Caught, Hilarity Ensues

Links:

xkcd Purity: https://xkcd.com/435/

Turing Machine: https://plato.stanford.edu/entries/turing-machine/ 

Von Neumann Architecture: https://en.wikipedia.org/wiki/Von_Neumann_architecture 

Half Adder: https://www.geeksforgeeks.org/half-adder-in-digital-logic/ 

Links:

• Court Case: AT&T Accuses Broadcom of Doing All The Things That Broadcom is Doing
• Windows ARM Is Finally Here
• SMB Networking Gear Company Zyxel Alerts About a Lot of CVEs
• Intel Isn’t Doing Too Hot

Links: 

• NFL Throwback Highlights: The Greatest Game Ever Played
• What did ancient statues really look like in their time?
• The first game broadcast in color - UC vs UPenn, Franklin Field, Phila
• The First Instant Reply - Army-Navy game, 1963
• The Thin Yellow Line - Virtual First Down Markers 

VMWare Explore 2024 was marked by dissatisfaction among attendees due to higher costs, a smaller expo, and lackluster swag, with many feeling alienated by Broadcom's management, despite some solid tech sessions.

The Windows Control Panel, initially set to be deprecated in favor of the Settings app, will remain available in the 2024H2 version of Windows 11, as Microsoft backtracked on its original plans.

A company called Plaud has introduced a wearable AI device called NotePin, which has been met with skepticism due to its limited usefulness and questionable design, despite being cheaper and more practical than similar failed devices.

Links:

- Microsoft Says MFA For Everyone
- VMWare Explore Was This Week: Exploring the End of VMWare, Apparently
- The Erstwhile Windows Control Panel Gets a Stay of Execution
- They’re Making Another Wearable AI Thingy Because They Just Can’t Stop Themselves

Mo Keys Mo Problems

Ned and Chris explore the quirks of keyboards, starting with the irritation of missing home and end keys and the infamous ThinkPad function/control key switch. They journey back to typewriters of the late 1800s, like the Remington which gave us the QWERTY layout, and poke fun at old-school innovations like the shift key and tab key. The chat then shifts to terminal keyboards and early computers like the PDP-1, with its own peculiar keys. The guys also cover obsolete keys like Sys Rq, Pause/Break, Scroll Lock, and Num Lock, showing how they’ve become relics in today’s tech world.

Links:

• Microsoft Releases New Version of Teams App That Might Actually Work
• After Almost A Decade Azure Service Manager Is Finally Being Retired
• Many Microsoft MacOS Applications Have Major Security Flaws That Won’t Be Fixed
• FTC’s NonCompete Ban is Banned

Bits, Quits, and Quantum Fits: The Mysteries of SMTP and Superposition

Ned and Chris dive back into the nightmare disaster hellscape that is SMTP and explore the band-aid solutions of SPF, DKIM, and DMARC. Then, they take on quantum mechanics and computing. After all, who doesn’t love a good brain-melting challenge? The guys also explore the wild world of qubits, superposition, and the potential future where quantum computing could make encryption as we know it obsolete. Plus, Chris gives a shout-out to IBM’s free quantum computing resources—because who wouldn’t want to dabble in quantum for fun?

Links

• Recent Paper Demonstrating Grover’s Algorithm in a 4-Qubit Processor 
• The Fundamentals of Quantum Computing - Grover’s Algorithm 
• IBM Quantum Computing Instructions on Running Grover’s Algorithm 
• Charles and Ray Eames - Powers of Ten on Youtube 
• Fujitsu Labs Opinions on Quantum Cracking RSA

Links:

• Quantum Encryption Standards Emerge From NIST
• Crowdstrike President Accepts Most Epic Fail Award in Person
• Like Many 30 Year Olds FAT32 Gets A Little Bigger
• We Have a New Contender For The Largest Data Breach Ever

Secure Boot’s Achilles’ Heel

Ned and Chris dive into a freshly uncovered flaw in the Secure Boot process of PCs using UEFI firmware. They trace the evolution of boot processes from ENIAC’s manual grind to today’s automated systems, highlighting the crucial role of cryptographic keys in blocking unauthorized code. Along the way, they expose a serious blunder where some OEMs carelessly included untrusted platform keys in their UEFI firmware, opening the door to rootkit attacks. The fix? A firmware update—if you’re brave enough to handle it.

Links

• Binarly post
• Keys in the Intel Boot Process
• How Bootguard works
• Securing the Boot Process
• Bootstrapping
• X86 Boot Process with BIOS
• BlackLotus UEFI Bootkit

Links:

• OpenAI Has A Tool To Help Stop ChatGPT Based Cheating But Won’t Release It
• Intel Isn’t Having The Best Week Ever
• A Flaw In Windows Update Allows Attackers To Downgrade PCs
• Laptop Farm in Tennessee Working For North Korea

Entrust Distrusted by Google Chrome

Ned and Chris take a deep dive into the juicy tidbit about Google Chrome throwing Entrust under the bus. They dissect Chrome's decision to cut off new Entrust certificates starting October 31, 2024, all thanks to Entrust’s persistent screw-ups. Their chat covers how digital certificates are supposed to keep our online world secure and how modern tools like ACME and Certbot have made managing certificates way easier than it used to be. The guys also touch on how extended validation certificates have lost their shine and the latest drama with DigiCert's certificate revocations.

Links

• Original Google Security Blog post announcing Entrust distrust 
• Entrust’s commitment to answering to all of Google’s concerns 
• Discussion of an example where Entrust failed to revoke a bad cert 
• DigiCert Certificate Revocations 
• Post-Recording Update: Mozilla decides to untrust Entrust too 

Links:

• Microsoft Fiddles While Azure Burns
• Two Generations of Intel CPUs Affected by Chip-Destroying Voltage Bug
• AI Isn’t A Pancea? Say It Ain’t So!
• OpenAI Releases Safety Update To ChatGPT Intended To Stop Some Prompt Hacks

Where Were You the Day the Screens Turned Blue?

The tech industry is a house of cards propped up by a mishmash of redundant systems and safety nets. In this episode, Ned and Chris dive into CrowdStrike’s Falcon sensor update on July 19, 2024. This blunder sent Windows systems crashing, causing chaos across airlines, retail stores, and hospitals. They dissect how the update triggered the dreaded Blue Screen of Death and the nightmarish recovery process, especially for BitLocker-encrypted systems. Solutions like macOS’s System Extensions and Linux’s eBPF are tossed around, with a side of skepticism about the balance between speed and security and the inevitable trainwreck of regulatory responses.

Links:

• Advertising Company Google Chooses Not To Harm Their Ad Business
• Intuit Drinks The AI KoolAid
• Yet Another Initiative To Maintain CentOS Gets Off The Ground

Wind Turbines Don’t Kill Birds and Amazon Doesn’t Use 100% Renewable Energy

Amazon claimed to be 100% renewable, but Amazon Employees for Climate Justice argues that the company hasn't met its climate pledges, and even threatened a walkout. In this episode, Ned and Chris discuss the growing energy demands of data centers, noting that despite efficiency improvements, their power consumption is set to double by 2026. The guys also share electrocution stories and explore modern sustainability, alternatives to oil, and advancements in solar and wind power. They also examine Amazon’s recent efforts, like ordering 100,000 electric vans, signaling possible positive changes ahead.

Links

• Amazon’s Story About Being 100% Renewable May Have Been Written By AI
• The Theory and History of Peak Oil 
• Carbon Disclosure Project’s 2023 Fact Sheet 
• Crescent Dunes Solar Energy Project 
• Amazon Climate Justice Research - Amazon’s 100% Renewable Claim is a 22% Reality 
• Amazon’s Mississippi Datacenter Plan Includes Real Renewable Power Sources 
• International Energy Agency - Electricity Analysis 2024 to 2026 

Links:

• AT&T Believes That Sharing Is Caring
• SAP AI Product, and the Environment its Running On, Breached
• Markdown In Google Docs! At Least Two People Are Thrilled!
• NVIDIA Open-Sourcing Kernel Module

The More Things Change, the More BGP Changes a Little Bit

Ned and Chris dive into the evolving landscape of BGP with Doug Madory, the Director of Internet Analysis at Kentik. Despite the rapid transformation of the internet since the mid-1990s, BGP remains largely unchanged, leading to a rise in routing hijacks and user errors. Doug discusses how automated filters and cryptographic tools like RPKI ROV are mitigating mistakes and improving security. He explores the potential of BGP solutions in reducing global issues and the importance of initiatives like ASPA. The guys also get Doug’s take on significant events like the Allegheny/Verizon incident and the FCC's ongoing efforts to enhance BGP security.

Links

• Kentik: https://www.kentik.com/ 
• Twitter: https://x.com/DougMadory 
• LinkedIn: https://www.linkedin.com/in/dougmadory/ 
• Kentik blog: https://www.kentik.com/blog/ 

Links:

• Microsoft Adding Spellcheck Features To Notepad For… Reasons?
• The War On Floppy Disks Concluded For Japan
• OpenAI To Add Accountability By.. Removing Microsoft And Apple From The Board
• Starving the AI Beast With Cloudflare

Supercloud is as Supercloud Does

Ned is no longer a stickler for language, but he still can't stand the term “supercloud.” In this reissued episode, we break down this term that’s been kicking around since 2016 in various guises. Ned regales us with tales from his analyst days and the dubious connection between analyst firms and the supercloud. He and Chris dissect the latest buzzword definition and ask the burning question: is "supercloud" just marketing drivel? Spoiler: yes, and a contradictory one at that. 

Links Referenced:

• A website from Cornell that is an actual software project to allow for application migration between clouds http://supercloud.cs.cornell.edu/ 
• MIT webpage about a project they called supercloud that was meant to enhance collaboration between MIT Lincoln labs, students, and faculty https://supercloud.mit.edu/ 
• The rise of the supercloud https://siliconangle.com/2021/12/07/the-rise-of-the-supercloud/ 
• There is a working group definition of Supercloud you can check out https://docs.google.com/document/d/1SP0G-3CEnJ4Zz1sPoZt6eA6Weq8F5Osk93jLcPLcK60/edit?usp=sharing
• It was discussed in an IT Roundtable at Cloud Field Day 15 https://techfieldday.com/appearance/rise-of-the-supercloud-cloud-field-day-15-delegate-roundtable/

Lightning Round

• Amazon announces preorder for Halo Rise, because Bezos literally wants to watch you sleep https://www.cnet.com/health/sleep/amazon-reveals-the-halo-rise-a-sleep-sensing-gadget-and-sunrise-alarm-clock/
  • Keeping your data safe is a bar that Amazon has consistently, and repeatedly, failed to clear https://www.wired.com/story/amazon-failed-to-protect-your-data-investigation/
• Reason Number 0 Not To Run Exchange Yourself https://arstechnica.com/information-technology/2022/09/high-severity-microsoft-exchange-0-day-under-attack-threatens-220000-servers/
  • Microsoft has an advisory post up that details the vulnerabilities and suggested mitigation strategies https://msrc-blog.microsoft.com/2022/09/29/customer-guidance-for-reported-zero-day-vulnerabilities-in-microsoft-exchange-server/
• OpenAI removes waitlist, gives full, immediate access to DALL-E https://www.washingtonpost.com/technology/interactive/2022/artificial-intelligence-images-dall-e/
• C and C++ are looking mighty rusty, or rather they aren't https://www.theregister.com/2022/09/28/is_it_time_to_retire_c/
• Google moving forward with Manifest v3 mandate, much to society's general disgust https://www.ghacks.net/2022/09/09/opinion-it-is-time-to-switch-from-chrome-to-another-browser/
• Stadia Fragged By Friendly Fire https://techcrunch.com/2022/10/01/stadia-died-because-no-one-trusts-google/
  • Alas, another service killed by Google. Wonder if there's a site tracking that sort of thing? https://killedbygoogle.com/

Original Episode:
https://pod.chaoslever.com/behold-the-superbook-28/ 

Mainlining AI in Washington DC

Ned shares his experience attending the DC AWS Summit, which was heavily focused on AI. This gave him the opportunity to put cognitive behavioral therapy into practice and confront his aversion to AI by attending nothing but AI-centric sessions. In this episode, Ned tells what he learned about AWS's AI portfolio, noting its key products like Amazon Bedrock. He also discusses GenAI in DevOps, featuring tools like Q Developer, GitLab Duo, and AWS's hardware innovations. Despite all this, Ned remains skeptical about AI, likening its current state to the hype preceding the dot-com bubble, with the best applications seen in developer and ops productivity.

Links Referenced:

• DC AWS Summit keynote: https://youtu.be/T67M8NIYxjk 

Links: 

• AL Al Will Enable NBC To Continue To Have No Idea How To Be Creative
• Is The AI Bubble About To Pop?
• A Datacenter - In SPAAAAAAAAAACE!
• All You Had To Do Was Ask Nicely

A Gambol Through Space and Time

The United Nations has designated 2025 as the International Year of Quantum Science and Technology. To add to the confusion, Ned and Chris are trying to cover the history of quantum mechanics in this episode. They don’t succeed, but they still manage to cram a good 2,450 years in there, which is pretty good. They starting with ancient light theories by philosophers like Pythagoras and get all the way to the Newton-Huygens particle vs. wave debate. Fast forward to the 1900s when Einstein and friends discovered photons, and things get delightfully mathy with De Broglie, Heisenberg, and Schrödinger.

Links

• https://anilananthaswamy.com/through-two-doors-at-once 
• https://en.wikipedia.org/wiki/Double-slit_experiment 
• https://www.scientificamerican.com/article/what-einstein-really-thought-about-quantum-mechanics/ 
• https://pubs.aip.org/physicstoday/article-abstract/38/4/38/434993/Is-the-Moon-There-When-Nobody-Looks-Reality-and 
• https://plato.stanford.edu/entries/qm-collapse/ 
• https://philsci-archive.pitt.edu/3658/1/perovic_preprint.pdf 

Links: 

• Interstellar Voyager 1 Fully Operational Again
• Critical vCenter Security Patches Released - You Know What To Do
• Dell’s Demand For In Person Attendance Ignored
• Anthropic releases Claude 3.5 Sonnet, Gradually Improving On 3.0

It’s a Confusing Day in the Neighborship

Sure, Kim Kardashian broke the internet that one time, but she’s not the only one capable of such a feat. In this episode, Ned and Chris recount the tale of how Verizon and a BGP optimizer took large swaths of the internet offline in 2019. This leads them into the intricacies of border gateway protocols, tracing its evolution from a temporary solution for NSFNET in the 1980s to a foundational element of internet routing today. Along the way, they explore version four's operational details, including key attributes like local preferences and AS path length.   

Links

• BGP Deep Dive: https://www.youtube.com/watch?v=SVo6cDnQQm0 
• BGP defined: https://en.wikipedia.org/wiki/Border_Gateway_Protocol 
• ASN Allocation: https://www.nro.net/about/rirs/statistics/ 
• Three napkins protocol: https://www.stuff.co.nz/technology/digital-living/69048160/the-three-napkins-protocol-quick-fix-for-early-internet-problem-left-web-open-to-attack 
• Or was it the TWO Napkins protocol?!?: https://computerhistory.org/blog/the-two-napkin-protocol/?key=the-two-napkin-protocol 
• Allegheny and DQE mess up the internet: https://blog.cloudflare.com/how-verizon-and-a-bgp-optimizer-knocked-large-parts-of-the-internet-offline-today/
• NSFNET: https://en.wikipedia.org/wiki/National_Science_Foundation_Network  
• NSFNET Backbone: https://new.nsf.gov/impacts/internet 
• Leading Tier 1 ISPs: https://macronetservices.com/who-are-the-leading-global-tier-1-isps/ 

Links: 

• Apple Is Paying OpenAI In… Exposure
• Kubernetes Turns Ten
• Stop Trying To Make Sherlocking Happen. It’s Not Going To Happen!
• Raspberry Pi Pops in IPO

One of the Good Ones: The 2024 Gartner Security and Risk Management Summit

Sometimes it's worth putting pants on. In this case, it's for the 2024 Gartner Security and Risk Management Summit. Despite previous criticisms of Gartner, Chris found the conference surprisingly enjoyable. In this episode, he provides an overview of the event, which featured over 150 sessions. One important keynote highlighted the unhelpful obsession with perfect IT security performance, emphasizing the need to focus more on recovery than prevention. Ned and Chris discuss the resulting industry burnout, which affects productivity and creativity. Other topics include evolving security behavior programs, AI and its risks, and the future impact of quantum technology.

Links

• Highlights from the Gartner Security and Risk Management Summit 2024 https://www.gartner.com/en/articles/highlights-from-gartner-security-risk-management-summit-2024  
• Gartner YouTube Channel https://www.youtube.com/@Gartnervideo  
• Rahaf Haroush - How Burnout Makes Us Less Creative https://www.ted.com/talks/rahaf_harfoush_how_burnout_makes_us_less_creative?subtitle=en  
• Gartner Generative AI Impact Radar for 2024  https://www.gartner.com/en/articles/understand-and-exploit-gen-ai-with-gartner-s-new-impact-radar 
• Gartner Generative AI Impact Radar for 2024 https://www.gartner.com/en/articles/understand-and-exploit-gen-ai-with-gartner-s-new-impact-radar

Links: 

• Snowflake Hack Hits TicketMaster and Santander
• Microsoft Spyware Enablement Tool Recall Compromised By Many People Immediately
• BREAKING NEWS!
• Luna Evaluates AI Results Using… AI
• Intel Releases Lunar Lake - Next Gen CPU With An Emphasis On [SIGH] AI

There Can Be Only One (Rickrolling AI Mentor)

Chris Williams joins Ned and Chris this week to discuss the AI agent he recently created using ChatGPT. Ned kicks things off by filling us in on the history of AI from the early 20th century to today. This includes how early AI systems functioned, the role of deep learning models, and the impact of transformers. Chris Williams then explains his use of Retrieval Augmented Generation (RAG) to enhance his AI agent’s answer generation process, the tasks it performs, and its ability to Rickroll users. They also touch on future developments for the AI agent, user feedback, and Chris William’s views on OpenAI’s agent experience.

Links

• Blondie24: Playing at the Edge of AI https://www.goodreads.com/book/show/387996.Blondie24  
• Mistwire website: https://mistwire.com/  
• DevOps mentor: https://chatgpt.com/g/g-3ZqcfGQQ5-devops-mentor   
• LinkedIn: https://www.linkedin.com/in/chrisfwilliams/  

Links: 

• NIST Releases new version of SP 800-171
• The News Of Tape’s Death Is Much Exaggerated
• Massive Botnet Taken Down By The Treasury Department For Some Reason
• Some Apache Project With A Weird Name Is Being Actively Exploited

I Didn’t Go To The RSA Conference So You Don’t Have To

Didn’t make it to the 2024 RSA Conference? Well neither did Ned and Chris, but that’s not going to stop them from talking about it. This year’s theme was “The Art Of The Possible,” highlighting tech’s potential and the threats it faces. AI was a big topic with lots of talk about how both attackers and defenders are using it. The "Secure By Design" pledge was also a key initiative, focusing on better product security. Interestingly, Zero Trust, which was a hot topic in past years, didn’t get much attention this time around since deep engineering concepts aren’t top-of-mind once past the first wave of publicity.

Links

• Full agenda of the 2024 RSA Conference: https://www.rsaconference.com/usa/agenda/full-agenda#t=agenda-full-catalog-tab&sort=%40eventstart%20ascending%3B%40parenttitle%20ascending&numberOfResults=25
• RSA Conference YouTube Channel: https://www.youtube.com/@RSAConference 
• 2024 Verizon Data Breach Report: https://www.verizon.com/business/resources/reports/dbir/ 
• CISA’s Secure by Design Pledge: https://www.cisa.gov/securebydesign  
• CL episode “The Reality of 'Secure by Design' and the Future of Cybersecurity”: https://podcasts.apple.com/us/podcast/the-reality-of-secure-by-design/id1614000252?i=1000648350807   

Links: 

• AI Company No One Likes Seeking Buyer For Preposterous Amount
• AI Is Coming For Your… Terminal Emulator??
• NTLM and VBScript Are Finally Being Deprecated
• Microsoft Decides To Take Its Spyware Reputation To The Next Level With Recall

Leave us a Voice Mail! Go to https://pod.chaoslever.com/ and click the microphone in the lower-right-hand corner. 

Digging Deeper Into DNS 

Building on their previous discussion, Ned and Chris explore lesser-known alternatives to DNS and the evolution of network security protocols. They discuss NetBIOS, a system developed by IBM for internal network communications, explaining how it handled name resolutions within smaller network segments in a noisy and often inefficient way. They also detail the development of DNS security measures like DNSSEC and DNS over HTTPS, which play critical roles in protecting DNS against various threats. Highlighting Microsoft's latest initiative, Zero Trust DNS (ZTDNS), they explain its objective to boost network security by restricting DNS requests to only those that are approved.
 

Links: 

• Original IBM PC network reference from 1984
• NetBIOS Standard 
• WINS deprecated
• Windows Server NT 3.5
• Encapsulate commands in DNS
• ZTDNS

Links: 

• zScaler Wasssssssssssss.. NOT Hacked. Or Were They? I Mean Probably Not But Still
• Asahi Linux Reaches New Milestone
• VPNs Attackable Via DHCP Mechanism That Has Little To Do With VPNs
• Congress Still Sucks - Drops Broadband Discount Ball

The Internet's Phonebook

In this episode of Chaos Lever, Ned and Chris dive into the world of DNS—the system that acts like the internet's phonebook by translating website names into IP addresses that computers understand. They explore the origins of DNS, its role in networking, and its evolution over the years. The duo also discusses the latest advancements in DNS security and how these efforts aim to protect users from cyber threats, making the internet safer for everyone. 

Links: 

• Average of 17 devices in their house that need an IP address
• There’s a map available on apnic’s website that tracks DNSSEC validation rates
• The most recent RFC for DNSSEC published in 2023 quotes DNSSEC adoption at 10% or less for website domain names
• According to Yahoo Finance, Comcast is #7 of the 20 most hated companies, beating out such stinkers as FTX and Equifax
• Brief history of DNS
• DNS Wikipedia
• DNS RFC
• DNS over HTTP
• DNS over TLS
• DNSSEC
• ZTDNS 
• Encapsulate commands in DNS
• How DNS works zine 
• Average number of online devices in a home 

Links: 

• zScaler Wasssssssssssss.. NOT Hacked. Or Were They? I Mean Probably Not But Still
• Asahi Linux Reaches New Milestone
• VPNs Attackable Via DHCP Mechanism That Has Little To Do With VPNs
• Congress Still Sucks - Drops Broadband Discount Ball

Quantum Queries 

In this episode of Chaos Lever, Ned and Chris explore quantum computing, unpacking the science of qubits and superpositions. They explain how quantum computers operate on principles fundamentally different from classical computers, highlighting this emerging technology's potential and limitations. Ned and Chris also tackle the excitement around quantum computing, discussing its slow progress and the significant technological hurdles yet to be overcome.

Links: 

• We haven’t talked about Quantum in a while - but ScienceDaily keeps their eye on it
• Microsoft Explains Qubits - With Maths And Pretty Pictures!
• IBM Condor Quantum Computer Has 1,121 Qubits… Now What
• Microsoft Azure Quantum Computing Pricing Is As Confusing As Quantum Computing
• LINK: Bad forbes Article called “Quantum AI is Closer Than You Think

Links: 

• Careful With Your S3 Naming
• Another Day, Another Disastrous Windows Patch Bundle That Breaks Everything
• No More Terrible Default Passwords In The UK
• Another Day, Another sudo Clone That Everyone Thinks Will Take Over The World

IBM’s $6.4 Billion Acquisition 

In this episode of Chaos Lever, Ned and Chris discuss IBM’s significant acquisition of HashiCorp, a deal valued at $6.4 billion. They look into the implications of this merger for the tech community, oversee HashiCorp's journey from Vagrant to the role of Terraform in infrastructure as code, and speculate on the future integration within IBM's ecosystem. This episode also covers broader tech trends, mergers, and the impact of corporate culture on acquired entities!

Links: 

• IBM has entered into an agreement to acquire HashiCorp 
• It’s been almost five years since IBM acquired Red Hat for $34B in 2019
• Revenue was $57.7B In 2023, it was $61.8B
• IBM has acquired 19 companies since Red Hat.
• There’s a really good article from Fintan Ryan on Medium

Links: 

• The Metaverse Is A Generational Thing, And We Ain’t That Generation
• FTC Agrees That Competition Is Good
• AWS Retires The Snowmobile Because Nothing In The World Is Fun Anymore
• TikTok Ban Appears Impotent, I Mean Imminent

Tabs vs. spaces 

This Chaos Lever episode explores the surprisingly intense debate around using tabs and spaces in programming. Ned and Chris cover the historical journey of coding practices from punch cards to modern coding environments. They discuss how seemingly small choices, like whether to use tabs or spaces, have great implications for code readability, maintenance, and even programmers’ salaries.

Links: 

• Whereupon I Ramble Hopefully Somewhat Coherently About The Spacing Wars In Computer Files
• Which is, as is true with so very many things, FORTRAN.
• All the way up to 1990, when FORTRAN finally made the formatting optional
• This has been proven by analyses that I choose to support because they totally line up with my already existing beliefs
• An analysis of the data behind Stack Overflow’s 2017 developer survey
• But what google did is kickstart the tabs vs spaces war by including in their formatting requirements this line

Links:

• Humane AI Pin Sucks, Influencer Blamed For Killing Company
• Google Drive Gets Dark Mode; I’m Irrationally Excited About It
  • Dark Reader
• Airchat Bursts Onto The Scene To Make Us All Dumber
• New Malware Loader Latrodectus Making More And More Inroads With Bad Actors

Tech Etymology 

This episode of Chaos Lever examines the fascinating backstory behind standard tech terms. Ned and Chris discuss how these terms evolved from practical uses in the past to the digital expressions we use daily. This episode also touches on current events in the tech world, including Redis's licensing changes and HashiCorp's legal battles, providing a humorous yet insightful look into the complexities of the tech industry.

Links: 

• Torsion of Wing Trusses at Diving Speeds
• English Stack Exchange
• I asked ChatGPT, which unsurprisingly quoted Wikipedia at me.
• I’ll just link the Etymonline post for that one
• origin of Kubernetes at the link
• National Advisory Committee for Aeronautics technical note from 1947
• Matt Ferrell over at Undecided

Links:

• Home Depot Hammered by Supply Chain Data Breach
• Hackable BMCs for Supermicro Won’t Be Fixed
• Intel Releases New AI Accelerator Chip, Looks To Keep Accelerating
• Google Tries To Get A Leg Up Intel With A New ARM

CVE-2024-3094

In this Chaos Lever episode, Ned and Chris look into the shadowy depths of cybersecurity where a malicious code, CVE-2024-3094, lurks within the seemingly benign xz compression software. This problem was deliberately created by someone with harmful intentions and essentially allows hackers to sneakily access and manipulate data in systems using this software. Ned and Chris uncover how this exploit could give hackers unfettered access to Linux systems worldwide, transforming SSH connections into potential gateways for data manipulation and unauthorized entry. Join us as they discuss the complexity of this cyber threat, its discovery, and the critical lessons in vigilance and software upkeep it teaches us. 

Links: 

• https://arstechnica.com/security/2024/04/what-we-know-about-the-xz-utils-backdoor-that-almost-infected-the-world/ 
• https://nvd.nist.gov/vuln/detail/CVE-2024-3094 
• https://gynvael.coldwind.pl/?lang=en&id=782 
• https://github.com/libarchive/libarchive/pull/1609 
• https://mastodon.social/@AndresFreundTec/112180406142695845 
• https://www.openwall.com/lists/oss-security/2024/03/29/4 
• https://arstechnica.com/information-technology/2014/04/tech-giants-chastened-by-heartbleed-finally-agree-to-fund-openssl/ 
• https://www.linuxfoundation.org/blog/open-source-maintainers-what-they-need-and-how-to-support-them 

Links:

• PCI 7 Coming Along Nicely
• More Shitty but-only-SUSPECTED Facebook Behavior Proven Real… Again
• SS7 Might Finally Get Secure
  • SMS and why it’s a security nightmare
• Email Security Mandates Becoming Mandat-ier Thanks To Google And Yahoo

Ethernet vs. InfiniBand:

This episode takes listeners into the world of data center networking, as Ned and Chris dissect the critical role of Ethernet and InfiniBand technologies in AI's rapid evolution. They explore how these networking giants influence the performance and efficiency of AI workloads and high-performance computing, highlighting their implications for future tech innovations.

Links: 

• Intel’s Emerald Rapids XCC model will have 61 Billion transistors across 64 cores
• Seagate’s Exos Mosaic hard drive will have 30TB of capacity
• Nimbus Data has a 100TB SSD
• Broadcom’s Tomahawk 5 chip does 51.2 Tbps at line rate
• https://www.simplilearn.com/tutorials/machine-learning-tutorial/what-is-epoch-in-machine-learning
• https://community.fs.com/article/need-for-speed-%E2%80%93-infiniband-network-bandwidth-evolution.html 
• https://www.arubanetworks.com/faq/what-is-spine-leaf-architecture/ 
• https://avinetworks.com/glossary/equal-cost-multi-path-routing-ecmp/ 
• https://en.wikipedia.org/wiki/Go-Back-N_ARQ 
• There are five big improvements the UEC hopes to make with their v1.0 of the standard
• https://engineering.fb.com/2024/03/12/data-center-engineering/building-metas-genai-infrastructure/

• Blogspot-Wannabe Medium Declares War on AI Created Content
  • A Flood of Garbage AI submissions basically ruining SciFi Zine Clarkesworld 
• FCC Finally Updates Broadband Speeds
• Apple Silicon Chips Have Hardware Level Exploit That Could Expose Encryption Keys
• Hotel Hacking for Fun and Terror

AI's Infrastructure: How It's Built and Powered

Ned and Chris embark on a journey through the world of AI infrastructure, touching on key software and hardware components that make AI tick. From the basics of Python and TensorFlow to the power-hungry NVIDIA DGX servers, this episode covers everything you need to know about the backbone of AI. They also explore the rapid world of InfiniBand networking, highlighting its importance as well as the challenges it faces against Ethernet advancements. Finally, Ned and Chris reflect on the environmental impact of AI's power consumption, humorously suggesting we might need to find a new planet or a better power source sooner than later. 

Links:

• I bet OpenAI has published something about their stack… sorta
• According to a post from 2016, OpenAI was using Python, TensorFlow, Numpy, Keras, and Anaconda
• TensorFlow is a machine learning library with APIs available for Python and C++
• Numpy is a Python package developed to support scientific computing
• Flyte, a graduated project from the Linux Foundation that leverages Kubernetes
• Nvidia H100 Spec Sheet
• DGX SuperPod
• Tensor Cores and CUDA cores, what is the difference?
• Nvidia helpfully posted some example code using the cuDNN library
• The Infiniband standard is a different protocol than Ethernet
• Ultra Ethernet Consortium is focused on developing an open standard that meets or exceeds what Infiniband does today
• Remember when Crypto was using as much power as the country of Argentina
• AI is already on pace to match that by 2027
• Microsoft’s AI for Beginners site to get down some of the terminology and lab time
• You may also want to take a beginner course on Python

Broadcom's $61 billion takeover of VMware 

Ned and Chris analyze Broadcom's acquisition of VMware for an astounding $61 billion, a move that has the tech industry buzzing. They discuss the potential impacts on VMware's innovation and product development, questioning whether it will continue to innovate or start to fall behind. Alongside this major news, they also touch on recent tech updates from Microsoft, a record-breaking supercomputer built by AMD, and a Microsoft Office security issue that could allow hackers access.

This is a rebroadcast of this episode: https://chaoslever.com/cl-05312022/

Links:

• Broadcom to buy VMware? Smell test failed
  • Wow I was wrong fast!
• Email to employees from the CEO
• Broadcom investor presentation
• Strategy for Broadcom from a 2021 slide deck shows they are focused on top 600 customers. Hope you’re one of those!
• Brian Madden has feeling that are worth reading
• Microsoft Build Stuff I Care About
• An AMD-powered supercomputer breaks the exascale barrier for the first time
• Microsoft Office security vulnerability identified after Microsoft decided it wasn’t a problem
  • There are other mitigations you can enact right now that include deregistering the msdt protocol