this post was submitted on 20 Jun 2026
140 points (98.6% liked)

Technology

85571 readers
3686 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 3 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
140
Low-skilled attacker used Claude, Codex to breach 14 companies (www.helpnetsecurity.com)
submitted 7 hours ago by sanitation@lemmy.today to c/technology@lemmy.world
32 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] LibertyLizard@slrpnk.net 12 points 6 hours ago (3 children)

Bad look for Claude after their vigorous insistence their model can't be used this way.

Also bad look for the 50 people I get in my inbox telling me AI is completely useless every time I talk about it. These arguments were worthy of entertainment a few years ago but not in 2026.

[–] Mondez@lemdro.id 2 points 1 hour ago

AI (specifically LLM) isn't unless unless you need it to be accurate. You don't need to be accurate to find software vulnerabilities for example, you just need to be able to sift enough of the false positives to be able to identify the real bugs for example.

LLMs are over hyped and being given away below the cost of training and running the models in the hope of getting entrenched then ramping up the costs though.

[–] A_norny_mousse@piefed.zip 2 points 1 hour ago* (last edited 1 hour ago)

Exploit scripts can be bought on the darknet. Or possibly just googled. Claude's role in this is close to insignificant.

[–] Carnelian@lemmy.world 14 points 5 hours ago (1 children)

What’s the use here? A random Ethiopian kid doxxing himself while “breaching companies”?

This article reads like yet another sensationalist advertisement for ai. How many people have supposedly now gained the ability to “breach dozens of companies” simply by typing “please” into a text box? Hundreds of millions? How is society still functioning if this is going on?

[–] darkevilmac@lemmy.zip 3 points 4 hours ago

The reason things haven't fallen apart is because there's a lot of devs working a lot more than they used to making sure they're patching vulnerabilities. Last year if you asked me what portion of my time was spent updating dependencies and responding to reports of vulnerabilities I'd say like 5-10%, this year that's easily more like 30%

I'm sure not every company is doing this, but depending on the sensitivity of the data the company is holding I'd imagine you'd see similar patterns elsewhere