HN Reader

AI slows down some experienced software developers, study finds (reuters.com)

2 points by OnionBlender 1m ago 0 comments

European Union Unveils Rules for Powerful A.I. Systems (nytimes.com)

1 points by jmsflknr 3m ago 0 comments

Education 3.0 (doc.searls.com)

1 points by speckx 3m ago 0 comments

Fp8 runs ~100 tflops faster when the kernel name has "cutlass" in it (github.com)

2 points by mmastrac 5m ago 0 comments

Spacelift Raises $51M Series C to Redefine Enterprise Infrastructure Automation (spacelift.io)

1 points by mariuszm 6m ago 0 comments

What Every Data Scientist Needs to Know About GPUs [video] (youtube.com)

1 points by skadamat 6m ago 0 comments

Sweden and Norway racing to launch satellites from mainland Europe (reuters.com)

1 points by shark1 6m ago 0 comments

Bastille 1.0 – Bastille Day 2025 (github.com)

1 points by mfro 8m ago 0 comments

The Lazy Marketer's Guide to Not Writing Terrible AI Prompts (aistackmarketer.substack.com)

1 points by gk1 8m ago 0 comments

What Keeps the Lights On (thenewatlantis.com)

1 points by Michelangelo11 10m ago 0 comments

Arm estimates a 14-fold increase in data center customers since 2021 (reuters.com)

1 points by voxadam 10m ago 0 comments

Japan Wires the Ocean with an Earthquake-Sensing 'Nervous System' (scientificamerican.com)

1 points by Brajeshwar 10m ago 0 comments

Robot performs realistic gallbladder surgery 'with 100% accuracy' (news.sky.com)

1 points by Brajeshwar 10m ago 0 comments

Jupiter endangers Earth, and may have extincted the dinosaurs (bigthink.com)

1 points by Brajeshwar 11m ago 0 comments

Parsing 1 Billion Rows in Bun/TypeScript Under 10s (taekim.dev)

1 points by tk90 11m ago 0 comments

Upgrading agentic coding capabilities with the new Devstral models (mistral.ai)

5 points by meetpateltech 16m ago 1 comments

End-to-End News Sentiment Pipeline with Serverless AWS, DuckDB and Streamlit (github.com)

2 points by nakuleshj 17m ago 1 comments

Pump Fiction (youtube.com)

3 points by imabot 18m ago 1 comments

Multi-Player Durable Stream Playground (s2.dev)

2 points by shikhar 18m ago 1 comments

Satellite data indicates recent Arctic peatland expansion with warming (nature.com)

2 points by PaulHoule 19m ago 0 comments

Robot performs first realistic surgery without human help (hub.jhu.edu)

1 points by geox 21m ago 0 comments

Underwater turbine spinning for 6 years off Scotland's coast is a breakthrough (apnews.com)

2 points by djoldman 22m ago 0 comments

Searchcraft: Advanced Search Developer Tools (searchcraft.io)

1 points by pipase 22m ago 0 comments

Psalm v7: up to 10x performance (blog.daniil.it)

1 points by danogentili 23m ago 0 comments

Challenges for no code tools for data science (medium.com)

1 points by pplonski86 23m ago 0 comments

Elon Musk's X faces an uncertain future (axios.com)

4 points by voxadam 23m ago 0 comments

Integrating Long-Term Memory with Gemini 2.5 (philschmid.de)

1 points by speckx 24m ago 0 comments

Show HN: Coherence – 5 min agentic chat SDK (withcoherence.com)

1 points by zoomzoom 25m ago 0 comments

Auto Generating Blog Feed (pliutau.com)

1 points by der_gopher 27m ago 0 comments

I Found a Lost Music Generator from the 90s [video] (youtube.com)

1 points by thunderbong 28m ago 1 comments

Show HN: Perennial Task (Prn) (github.com)

1 points by arthurdd 29m ago 0 comments

SHOW HN: Stripe Ignoring Legal Letters and Holding $800k+

1 points by Solsticebay 31m ago 0 comments

Go-EUVD: Go Library for Interacting with Enisa EU Vulnerability Database (EUVD) (github.com)

1 points by razielk 31m ago 0 comments

Tiny aquarium fish net 3D print (blog.qiqitori.com)

1 points by furkansahin 33m ago 0 comments

The Grip That Race and Identity Have on My Students (nytimes.com)

1 points by Michelangelo11 33m ago 0 comments

Evaluating the Critical Risks of Amazon’s Nova Premier (alphaxiv.org)

1 points by papertracker 34m ago 0 comments

How I ported Penko Park to Switch (ghostbutter.com)

1 points by konsuko 35m ago 0 comments

Europe's Great Founders Must Unretire (generalist.com)

1 points by koolherc 35m ago 0 comments

Intel CEO says it's "too late" for them to catch up with AI competition (tomshardware.com)

2 points by LorenDB 37m ago 0 comments

Every Company Will Need a Chief Agent Officer (mike-hostetler.com)

3 points by mikehostetler 39m ago 0 comments

If I Ran X (werd.io)

4 points by benwerd 40m ago 1 comments

Microsoft says regulations and environmental issues are cramping Euro expansion (theregister.com)

1 points by rntn 40m ago 0 comments

Reframe – Open‑Source ISO20022 Message Transformer in Rust (github.com)

1 points by codetiger 40m ago 1 comments

My Freelance Journey – From Zero to Building and Running My Own Agency (preetsuthar.me)

1 points by preetsuthar17 43m ago 1 comments

Andrew Ng: Building Faster with AI [video] (youtube.com)

1 points by sandslash 44m ago 0 comments

Flix – A powerful effect-oriented programming language (flix.dev)

2 points by freilanzer 44m ago 0 comments

WPP names senior Microsoft boss Cindy Rose as new CEO (theguardian.com)

1 points by mathattack 44m ago 0 comments

Epistemological Primes

1 points by MountainMan1312 45m ago 1 comments

Show HN: I rebuilt few years old project and now it covers my expenses (hextaui.com)

1 points by preetsuthar17 46m ago 0 comments

An almost catastrophic OpenZFS bug and the humans that made it (despairlabs.com)

2 points by ahlCVA 46m ago 0 comments

Unpatchable Vulnerabilities in Windows 10/11: Security Report 2025

4 vinhatson 5 7/9/2025, 6:21:44 PM zenodo.org ↗

Comments (5)

vinhatson · 20h ago
This comprehensive security report investigates unpatchable vulnerabilities in Windows 10 and 11, focusing on systemic flaws that resist traditional patching due to their deep integration into the operating system’s architecture, hardware dependencies, and legacy compatibility require ments. These vulnerabilities, rooted in fundamental design choices and ecosystem constraints, pose significant challenges to securing millions of Windows devices worldwide. The report ex amines three critical vulnerabilities: legacy BIOS/UEFI firmware weaknesses, kernel memory management flaws, and backward compatibility with legacy protocols. It provides a detailed technical analysis, exploitation vectors, detection challenges, and comprehensive mitigation strategies. With Windows 10 approaching its end-of-support deadline in October 2025, these flaws pose heightened risks, necessitating proactive defenses. This report adheres to responsi ble disclosure principles and aims to support Microsoft’s efforts to strengthen Windows security in 2025.
p_ing · 19h ago
Interesting that the report calls out SMBv1 which is disabled by default in Windows 11. I suppose you could have an exploit that triggered SMBv1 optional feature install, but you already have local admin rights at that point.

SMBv1 has effectively been removed for modern clients and thus is not 'unpatchable'.

Encryption is on-by-default with SMBv3, I believe.

So some of these mitigations are already in place. I'm sure the UEFI issues will always persist, that's not a Microsoft issue per se, and I assume the kernel memory management potential vulnerabilities are still present, though the author doesn't offer any concrete proof in the report that these are exploitable as of today.

vinhatson · 19h ago
This is my first public article on security. I have several reports certified by MSRC as unpatchable vulnerabilities. However, from a legal standpoint, I'm not yet clear on the reasonable limits of technical detail for publishing these reports. Therefore, I'm just testing the waters first. I will find a way to gradually publish them from an academic perspective but am currently considering how to avoid legal consequences.
p_ing · 15h ago
Ah yep, follow your NDAs/refer to a lawyer.

Good luck, I like the report format! Hopefully we hear from you again on the truly nasty vulnerabilities.

vinhatson · 19h ago
Thank you