this post was submitted on 13 Jan 2026
762 points (98.7% liked)

Technology

78964 readers
3487 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
762
'Signal' President and VP warn agentic AI is insecure, unreliable, and a surveillance nightmare (coywolf.com)
submitted 1 week ago by fubarx@lemmy.world to c/technology@lemmy.world
27 comments fedilink hide all child comments
 

Direct link to CCC video of talk: https://media.ccc.de/v/39c3-ai-agent-ai-spy

you are viewing a single comment's thread
view the rest of the comments
[–] NuXCOM_90Percent@lemmy.zip 43 points 1 week ago (3 children)

Yes and no.

At its very core? "Agentic AI" is about the idea of having a bunch of different "agents" communicate with one another in a network with defined(-ish) communication pathways. This is an "agent network". And if that sounds like microservices/task graphs/how every fucking app works then... you win the No-Prize!!

And, in that regard, it isn't any difficult. This service has access to that database. It always has. Hell, this service might still have zero "AI" in it but count as an "agent" for marketing purposes. If the credentials are checked and passed in an appropriate and authorized way, it is as safe as it ever has been. Which... is a different depressing discussion.

The issue comes into play when you are looking at people rapidly rewriting existing infrastructure just to say they did. And doing so with generative AI that they fundamentally can't vet (even if they wanted to). THAT is how you break things and THAT is how you introduce new CVEs.

The issue isn't that you have this data stored in a SQL table that is accessed by that service which was pre-seeded with credentials in a secure way. The issue is that you have no rewritten both that service and the SQL server in a way that "optimized" things by removing that costly security check.

[–] pinball_wizard@lemmy.zip 29 points 1 week ago (1 children)

Hell, this service might still have zero "AI" in it but count as an "agent" for marketing purposes.

True. I do think that's where we might find something useful after the bubble pops.

But it's some shit marketing though.

"Microservices, but sometimes it hallucinates." is a sales pitch targeted for gullible suckers.

[–] olympicyes@lemmy.world 2 points 1 week ago

“Microservices with delegated responsibility and elevated permissions, but sometimes hallucinates” is slightly more accurate. Claude Cowork probably won’t rm -rf / but what do I know.

[–] Slotos@feddit.nl 18 points 1 week ago

The windows have all the modern anti-burglary features and the plumbing is immaculate

— excerpt from a sale advert for a house with its front wall missing and the living room exposed to the elements

[–] chirospasm@lemmy.ml 6 points 1 week ago

Don't know why you're getting downvoted, but you've got a solid pulse on the issue, here.