VessOnSecurity's Avatar

VessOnSecurity

@vessonsecurity.bsky.social

Anti-virus, malware and infosec expert, crypto amateur, privacy advocate and general annoyance. PGP keyID: 0x365697c632dd98d9

306 Followers  |  27 Following  |  530 Posts  |  Joined: 07.12.2023  |  2.0306

Latest posts by vessonsecurity.bsky.social on Bluesky

Sure. It would probably be more convenient to do it by e-mail instead of here, though. You can reach me e.g., at vbontchev@yahoo.com. Probably best to do it in English - while I do understand Russian very well, I don't speak it well enough (the grammar is too hard).

03.02.2026 17:45 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Watch your notepad, it might be watching you too.

03.02.2026 12:05 β€” πŸ‘ 7    πŸ” 2    πŸ’¬ 2    πŸ“Œ 0

Anyway, I know personally some of the people mentioned in this article - Lozinsky, Bezroukov... Also, Kaspersky, of course; we're friends to this day. I met them all in 1990 at a conference in Kiev (still part of the Soviet Union back then).

03.02.2026 16:52 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

I just regularly supplied them with the newest version of my anti-virus program. I once held a lecture there about computer viruses. I was paid for it what is the equivalent of parts of a cent today. But because of that, I'm in a database of "people who have collaborated with the KDS". :-/

03.02.2026 16:52 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

Some day (preferably before I die of cancer in a few months), I probably have to tell the story about my computer virus-related dealings with the Bulgarian version of KGB - KDS... Nothing exciting, though - I don't know of any of their infected machines (although probably there were some).

03.02.2026 16:52 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 2    πŸ“Œ 0

"Exploding Rocket Company Buys Company Best Known For Generating Child Porn" would have been an epic headline.

03.02.2026 12:53 β€” πŸ‘ 25    πŸ” 8    πŸ’¬ 0    πŸ“Œ 0

Life always finds a way...

02.02.2026 12:25 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Benjamin De Kraker O @BenjaminDEKR Follow OpenClaw is interesting, but will also drain your wallet if you aren't careful. Last night around midnight I loaded my Anthropic API account with $20, then went to bed. When I woke up, my Anthropic balance was $O. Opus was checking "is it daytime yet?" every 30 minutes, paying $0.75 each time to conclude "no, it's still night." Doing literally nothing, OpenClaw spent the entire balance. How?

Benjamin De Kraker O @BenjaminDEKR Follow OpenClaw is interesting, but will also drain your wallet if you aren't careful. Last night around midnight I loaded my Anthropic API account with $20, then went to bed. When I woke up, my Anthropic balance was $O. Opus was checking "is it daytime yet?" every 30 minutes, paying $0.75 each time to conclude "no, it's still night." Doing literally nothing, OpenClaw spent the entire balance. How?

The "Heartbeat" cron job, even though literally the only thing I had going was one silly reminder, ("remind me tomorrow to get milk") 1. Sent ~120,000 tokens of context to Opus 4.5 2. Opus read HEARTBEAT md, thought about reminders 3. Replied "HEARTBEAT_OK" 4. Cost: ~$0.75 per heartbeat (cache writes) The damage: - Overnight = ~25+ heartbeats - 25 Γ— $0.75 = ~$18.75 just from heartbeats alone - Plus regular conversation = ~$20 total The absurdity: Opus was essentially checking "is it daytime yet?" every 30 minutes, paying $0.75 each time to conclude "no, it's still night."

The "Heartbeat" cron job, even though literally the only thing I had going was one silly reminder, ("remind me tomorrow to get milk") 1. Sent ~120,000 tokens of context to Opus 4.5 2. Opus read HEARTBEAT md, thought about reminders 3. Replied "HEARTBEAT_OK" 4. Cost: ~$0.75 per heartbeat (cache writes) The damage: - Overnight = ~25+ heartbeats - 25 Γ— $0.75 = ~$18.75 just from heartbeats alone - Plus regular conversation = ~$20 total The absurdity: Opus was essentially checking "is it daytime yet?" every 30 minutes, paying $0.75 each time to conclude "no, it's still night."

I’m starting to think the people who are excited about β€œAI agents” have literally never used a computer in their lives

01.02.2026 02:56 β€” πŸ‘ 2671    πŸ” 518    πŸ’¬ 13    πŸ“Œ 146

All stores are dumps, Catalin. Google's, Chrome's, Microsoft's, VSCode's, even Apple's.

25.01.2026 07:17 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

I dunno, a bi-weekly supply of food for two is like 150 euros here.

23.01.2026 08:08 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

KitKats cost $4k these days?

22.01.2026 22:55 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

He's talking about the arrival of space aliens, isn't he.

20.01.2026 12:29 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

I'm surprised they didn't use "Duh!" in their warning...

15.01.2026 07:36 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Well, it's one of those good news/bad news moments, folks...

Health (or lack thereof) update:

bontchev.nlcv.bas.bg/bye.html#202...

13.01.2026 17:25 β€” πŸ‘ 3    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
β€˜This claim is fake’: Government denies report forcing smartphone manufacturers to share their source code - The Times of India Tech News News: Government has denied a report stating that India has proposed new rules β€œforcing” smartphone manufacturers to share their source code. In a post on m.

"β€˜This claim is fake’: Government denies report forcing smartphone manufacturers to share their source code":

timesofindia.indiatimes.com/technology/t...

13.01.2026 15:08 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Preview
Musk's AI chatbot Grok gives reason it generated sexual images of minors Those posts – which violated Grok’s own acceptable use policy through the sexualization of children – have since been deleted, according to the chatbot.

That's not true, either.

New York Post:

nypost.com/2026/01/02/b...

CBS News:

www.cbsnews.com/news/grok-sa...

Business Insider:

www.businessinsider.com/elon-musk-gr...

Reuters:

www.reuters.com/legal/litiga...

All mention "minors", often in the very headline.

11.01.2026 05:18 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

I'm just objecting to the statement that the major US outlets have failed to run a single thing about it.

10.01.2026 22:14 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
The U.S. government is punting on Grok’s undressing issue The Trump administration’s numerous ties with Elon Musk and efforts to bring Grok into the federal government raise troubling questions about safety guardrails.

Fast Company:

www.fastcompany.com/91471550/gro...

The New York Times:

www.nytimes.com/2026/01/09/t...

The Cut:

www.thecut.com/article/elon...

USA Today:

eu.usatoday.com/story/life/h...

Reuters:

www.reuters.com/legal/litiga...

10.01.2026 19:25 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Preview
Elon Musk’s xAI under fire for failing to rein in β€˜digital undressing’ | CNN Business Elon Musk’s AI chatbot, Grok, hasβ€―been flooded with sexual images of mainly women, many of them real people, by being prompted by users to β€œdigitally undress” them and sometimes placing them in sugges...

What is your definition of a "major US outlet"?

CNN:

edition.cnn.com/2026/01/08/t...

Wired:

www.wired.com/story/x-didn...

Bloomberg:

www.bloomberg.com/news/article...

WaPo:

www.washingtonpost.com/technology/2...

The Verge:

www.theverge.com/news/853191/...

MSN:

www.msn.com/en-us/money/...

10.01.2026 19:25 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

No, why? There is much cybercrime originating from Russia, and (just like everybody else) Russia uses social networks for influence operations. Why would these two facts be obviously related? It could be just some of the crims feeling patriotic.

10.01.2026 17:07 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

One of the basic principles of using a "burner" phone is to never turn it on in physical proximity of your main phone.

Regarding the advice of leaving your main phone at home, I would add - yes, but do *not* turn it off. Leave it on there while you're away.

10.01.2026 15:19 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Can confirm. Being right has been a curse through most of my life.

10.01.2026 15:13 β€” πŸ‘ 4    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

A clear case of "if you can't fight them, join them".

08.01.2026 10:48 β€” πŸ‘ 4    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

"In politics, nothing happens by accident." -- FDR

08.01.2026 05:44 β€” πŸ‘ 2    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0

A power user is a user who uses a lot of power - e.g., for crypto mining of AI training, right?

08.01.2026 05:41 β€” πŸ‘ 3    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Can we *drink* some rye-based stuff instead and *then* throw up on the carpet? I have some bottles around...

07.01.2026 06:51 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

It's really funny how he routinely lies about trivial things that can be easily checked, like the gas prices, and then says the bare truth in cases where any politician with at least half a brain would lie to save face...

04.01.2026 15:31 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Bad feeling in what direction? "One day they'll bomb one country too many and reach the FAFO stage" or "is my country next one on the list?" direction?

04.01.2026 15:29 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

Ah, yes, because the USA has such a great experience of running Iraq. Oh, wait...

03.01.2026 18:50 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Yeah, this is clearly illegal. They should have shot him instead, like the Obama administration did with bin Laden.

03.01.2026 15:42 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

@vessonsecurity is following 19 prominent accounts