They all do have auto firing things that would not necessarily show on a screenshot. It's a cat and mouse game between these sites and filter maintainers.
But even for those I recommend the popup blocker strict extension.
I might be misremembering, but wasn't YIFY/YTS known for their awful quality ultra compressed releases? I thought they closed down many years ago tho, so no idea if they are the same people or if they still focus on low-quality releases.
Agree. I think most fish are beautiful in a way, even the "ugly ones".
What I really love about the fish under discussion here is, for a long time they had no clue why some rainbow trout became steelhead, and some didn't. (They still don't know 100%) Such an interesting story, and a regular rainbow and a steelhead just seem almost like another species - different size, behavior and even taste when you eat them.
You want to have fun, get two fresh water fish biologists in a room and ask them if steelhead and rainbow trout are different species. Everyone has a different opinion they believe in passionately.
People for a long time didn't know what the reproductive cycle of eels is like, because they travel all the way from the Atlantic ocean and back while maturing, so nobody had ever seen a juvenile. Too bad they're critically endangered.
You don't even need to find a whole 0day, you can find step 3 of 14.
Just dump it anon or sell it, don't even try to claim a bounty or get a cve. Without elaborating, they will make sure you regret it
Same goes for games. If you find RCE, report it and move on. If it remains unfixed let a journalist know. Do NOT accept their invite to the studio, they want to have you arrested. Would have happened to me were it not for one dude with a conscience at the company warning me not to go
Do you have any evidence this is actually happening to good faith security researchers?
There are many examples of Microsoft and other large corporations treating security researchers well. Microsoft hosts BlueHat, where they invite external parties to talk about their findings. They thank researchers monthly who do contribute reports to MSRC. As I recall, they treated bunnie well, and I think they also treated “hoodie” (the original Xbox 360 hacker) well as well.
If you find a real iOS zero day that you think has a market value of 2 million, how do you (a) find a legit buyer for it, and (b) ensure you get paid, presumably in your own choice of cryptocurrency?
Even if you dont count obvious dark markets there is plenty of well known companies mostly from Israel buying exploits.
You can even reach them via Linkedin and even demonstrate and sell in person with all paperwork. No risk here because they will re-sell them for much more.
Having it both fully anonymous, safe and in crypto will be harder. You need to have a trusted friend with right connections in industry not to get scammed.
no, I'm making the rhetorical point that the sort of persons that might have 2 million laying around to pay for an iOS zero day for blackhat type purposes might not be the most honorable or likely to actually pay you. And what recourse would you have?
This depends on what you consider black hat. Israeli company that sells surveillance malware to dictatorships around the globe isnt exactly moral, but its legal business.
Unlike Apple or Microsoft buying and selling exploits is their only source of income so they have no motivation not to pay. Reputation is much more important. Also legal system does work in Israel.
Fiber buried in the ground in 1996 is still useful. Servers from 1996, not so much outside of the retrocomputing community. The bulk of those trillions of dollars on AI is not going into useful long term infrastructure. It's going into equipment that will only be useful to scrappers after its initial life is over in three to five years as the sorts of places that can handle the heat load of 25 clothes dryers on high stuffed into 3.5 cu ft of space aren't going to run second hand machines. They aren't useful as in-office developer machines unless your office has 1000A of power to dedicate to that one single machine and the air conditioner need to keep the room the server is in from bursting into flames.
I'm seeing a lot of pushback against data centers in my town, building where there is currently cornfields.
I would disagree that it provides no benefit whatsoever. I ran the numbers on the proposed campuses, and at half price for industrial property taxes, it's at full build-out going to bring a billion dollars a year to the city. The property taxes I pay, which 73% of go to the local school district is about 108 million per year.
Unless the city royally screws this up, my property taxes are going to go down. Only a tiny number of residents will live near the data centers. But, the opposition is massive locally here, and I've been trying to understand why. Talking to people in various groups, there seems to be more going on with the opposition than simple NIMBYism (although that's part of it).
Some of the cited reasons are understandable - concerns about electricity. The state passed a bill to provide some relief, and there should be no water impacts locally here.
> Some of us would like to keep our “infinite” water resources which actually aren’t infinite.
We're talking Lake Michigan, which is where the local data centers by me will be sourcing their water from (our city and surrounding cities are switching from deep aquifer wells to lake water brought in via very long pipe). Forget the data centers (that's a drop in the bucket compared to the cities' usage), such pipes usually have a capacity of 50-100 million gallons per day (MGD). That'd be able to drain Lake Michigan in about 35000 years, assuming no rainfall. Forget draining, how many such pipes do you have to build for it to start draining water faster than it's flowing into the lake? At 100MGD, 300 or so.
So yeah, it's not infinite. Enough of these big pipes built out across multiple states could have an effect. IL is apparently limited to ~2000 MGD, and any other state bordering a lake (any great lake) has limits/usage far, far lower than that (Michigan is apparently 5MGD?). It doesn't appear to be too much of a concern. None of what's allowed would add up to taking out more lake water than is flowing into the lake. As long as the current limits are kept as-is.
Given the predicted rise of Lake Michigan, and the predicted future volatility of its level, I would suggest that the cities and states of the region be building as many megascale waterworks as they can, and the energy systems to operate them. If they can get that money from data center builders, all the better.
reply