Malware crew TeamPCP open-sources its Shai-Hulud worm on GitHub
Posted by CircumspectCapybara@reddit | programming | View on Reddit | 23 comments
Posted by CircumspectCapybara@reddit | programming | View on Reddit | 23 comments
FriendHot7938@reddit
wait they actually open-sourced malware on github this is wild like github should have caught this immediately
GenTelGuy@reddit
That's insane, what motivation would compel them to open source their worm code?
CircumspectCapybara@reddit (OP)
Lol at the authors' cheeky comment on vibe coded malware and agent-assisted attacks:
Jmc_da_boss@reddit
Exploits are the perfect thing to "vibe code" one of the rare systems where the ONLY thing that matters is a single output at a point in time. Sustainability or maintainability are not a concern
CircumspectCapybara@reddit (OP)
No man, we need five nines of availability and a 50ms p99.999 latency SLO.
dreamisle@reddit
Best I can do is nine fives ššš
txdv@reddit
A virus which creates a world wide distributed data center which can rival AWS?
Phailjure@reddit
Some sort of Borg cluster? Assimilating all the worlds computers?
RustOnTheEdge@reddit
āHow much of this code will be reusable if we want to make it a distributed event driven architecture?ā
CircumspectCapybara@reddit (OP)
Need CQRS and event sourcing and a data lake for good measure
lizardhistorian@reddit
If your vibe code is hard to maintain, you are not doing it right.
Jmc_da_boss@reddit
Vibe code that is maintainable is called writing code
2cars1rik@reddit
āWriting codeā implies no AI generation. If you think no AI generated code is maintainable, good luck with whateverās left of your career.
Phailjure@reddit
"vibe code" means you don't read the output, all coding, reviewing, planning, and architecting is done by AI.
2cars1rik@reddit
Yes. How does that contradict my comment?
Jmc_da_boss@reddit
It is indeed quite a miserable future. Outcomes take significantly longer and outputs have far more bugs. Every single index is now worse.
Such is life, a jobs a job.
2cars1rik@reddit
Canāt relate. Tackling huge, ambitious, impactful initiatives has always been my favorite part of this occupation. Lowering the barrier for cross-domain progress has accelerated that aspect like crazy.
Iām more excited about work now than I have been in the last decade, itās amazing.
Jmc_da_boss@reddit
good for you man, its definitely the age of the half ass some random big thing thats over ones head. At least someone is having a good time.
2cars1rik@reddit
āHalf assāā¦ itās telling that you canāt accept reality without injecting some salt š
SkoomaDentist@reddit
Not to mention that if the exploit only works, say, 20% of the times it's run, that's still perfectly viable while any regular software would be considered completely unusable.
UnrealHallucinator@reddit
True for the entire exploitation field tbh. Any script whether it's reversing, brute forcing, exploiting or malware only need to function. Nobody's checking code quality or sustainability. Well if it's malware I guess somebody somewhere might try to reverse it but bad code is even good in that case hahaha
bobsbitchtitz@reddit
Damn itās gone
LeeHide@reddit
HN thread: https://news.ycombinator.com/item?id=48120701