Missing from the article - the hacker first compromised Resolv Lab's AWS account, took a private key from KMS that was used to control minting, then managed to extract $25 million into ETH before all protocol functions were suspended.
^ this is a common security misconception in crypto. "We're using an HSM, they can't steal our private key." OK genius now you still have to secure the HSM.
There's no shortcut to MPC/multisig with 3+ keyholders.
> There's no shortcut to MPC/multisig with 3+ keyholders.
The whole concept of a stablecoin seems to be based on centralised trust.
Ultimately there is some org that has the fiat bank account, that mints and redeems the coins.
Nope, that is the foundation of bad stablecoin. Trustless decentralized stablecoin like DAI exist. People just largely don't do their homework and prefer scams that lure them in with promises of 'yield'
DAI and SKY are backed in large part by USDC, so they are not truly decentralized. It is possible in theory, but nobody has successfully done it so far.
It's possible in practice: that's how DAI worked originally. It's just not very competitive where the main customer -- traders -- want a lot of liquidity and razor thin spread.
DAI made some dumb decisions for market reasons recently but it was an actual stablecoin for a long time. It worked fine, they just decided to make it worse for some reason.
English is full of animal-based metaphors, and that's a pretty innocuous statement. "I herded everyone into a room" does not automatically imply that one perceives those people as animals.
The most telling sign of a human commenter is brevity.
Consequently, I hardly ever spend the time to write out long and detailed HN comments like I used to in the pre-LLM era. People nowadays have a much harder time believing that an Internet stranger is meticulously crafting a detailed and grammatically-airtight message to another Internet stranger without AI assistance.
This is interesting to me because I'm a degenerate "massive comment" guy. People have gotten mad at me for it before, I'll take a comment from them, break it down, address it portion by portion with citations, and then ask their thoughts. It's probably an obsessive level of engagement that people aren't really interested in, which is fair, but I don't know how else to get my point across in its totality.
Also there's some subset of users on this site who are rate limited, such as me. So for me that manifests in avoiding post for post conversations and more seeking to engage in an exchange of essays where I try to predict future points and address them, to save comments, which obviously results in long comments.
One suggestion from a fellow longwrite: Tweak that to “leave an opening for their optional reply” so that it’s okay if they don’t respond, so that you aren’t creating discomfort and pressure by the comment length, and you should see an easing both of pressure on yourself and on others. One of my most frequent longwrite sigs is “Reply optional as always” :)
Not quite. Brevity is more like a modern virtue, not an absolute sign of human-ness. Often longer sentences are necessary to express comprehensive logic more tightly. TBH, these days I feel like being penalized by the rise of LLM because my writing style used to be a bit similar to that of LLM, which emphasizes accurate logical connection (not that its logic is reliable), uses em-dashes (yes, I did use it tho I had to stop), and includes a bit of mumbling.
The Puya PY32 series MCUs found in most vapes have 3kb of RAM and 24kb of ROM, whereas Doom requires at least 4MB of RAM. Assuming Moore's law also applies to the computing power inside a disposable vape, we should be seeing that post in around a decade :)
The fact that this occurred in Bombay is important context. In India, the culture amongst older people is to have a clear sense of where you fit in the hierarchy. You might be verbally abusive to those who you consider below you, but you will remain silent and deferent to those who are considered economically/socially superior. This manifests as a certain class of people who have never been called out on any of their obnoxious behavior, because their economic/social status has shielded them from criticism for their entire lives. Meanwhile a majority of society is perfectly accustomed to being verbally abused, to the point where someone like me saying "please" and "thank you" makes it clear that I am of the Indian diaspora.
By the way, I've noticed that the younger crowd in India leans much more toward egalitarianism and tends to reject bizarre social constructs like caste. The fact that a young guy also thought of this solution speaks to their ingenuity as well.
I wouldn't call CareQuality a "data broker" as much as it is an interoperability framework. It's essentially a big distributed system of participants who agree to instantly share patient records - CareQuality maintains a central list of participants and the URLs where they can be reached. Since the technical requirements to actually participate in this network are fairly complex (far more than a hospital IT can or should manage), there are companies like Health Gorilla which serve as QHINs (Qualified Health Information Networks) which query the network on behalf of their customers (i.e. doctors engaging in some form of care).
There are many gray areas to this - for example, a value-based care program or ACO can pull records en masse, for the purpose of "care coordination" (i.e. checking if a particular patient requires intervention). However, what Health Gorilla has done is certainly no gray area as some articles on this matter suggest - if the allegations are true, then they have engaged in outright criminal behavior along with their co-conspirators (RavillaMed, LlamaLab, and others). Thankfully, this situation has completely eroded all trust in Health Gorilla and prompted a massive customer exodus.
Crazily, I only stumbled upon this because I ordered some discount blood labs and the requisition had Health Gorilla on the letterhead, which I found an absurd company name, so I googled them, and found the lawsuit which was filed the day prior. Absolute chance.
If this actually happens, get ready for an avalanche of AI-generated garbage code that exists for the sole purpose of boosting a scammer's metrics, so they can maximize their slice of the pie with the minimum amount of effort. Spotify is dealing with this same issue around AI-generated music [1].
I love the Typescript handbook, but wanted the examples to be "runnable". It turns out that the TypeScript compiler runs pretty fast in the browser for trivial code snippets, so I threw together https://ts.coach (TypeScript handbook with code examples that execute in the browser + instant type checking)
Thank you for the excellent feedback. I had this realization a while back that I'm a mobile user during "consumption" (e.g. browsing HN late at night), but a desktop user for "production" - now I see how it applies to this side project as well. Also, I still need to figure out some React performance issues which make it virtually unusable on pre-2020 machines :(
This comment actually invigorated me to try the site from my phone and improve the experience, so I sincerely thank you for the motivation.
I've considered doing a similar project to yours writing or using some mobile friendly editor and hooking it directly into TypeScript's LSP, which can be easily added to a web page, but was never motivated/disciplined enough to push through it.
My opinion on him shifted because along with Paul Graham, they're the only tech leaders who have stood up for Palestinians. I don't agree with Graham on everything either, but I've gained a lot of respect for him speaking out against Zionism. They're rich, but it still is difficult to go against the entire venture capital industry to do the right thing.
Completely agree with you on this. It will be an unfortunate exercise for future historians to look back on this time, crunch through the enormous amount of data with their quantum computers, and end up realizing just how many people were willing to condone the slaughter of innocent civilians.
You say this as if the side you're advocating for didn't start the war by killing over a thousand civilians.
Just in general, asserting that everyone will agree with your side in the future is such a bizarre rhetorical tactic. Do you honestly think this convinces anybody to reconsider their position?
My point equally applies to everyone who condones violence to achieve some end goal. Jeanette Rankin was vilified for her lone dissenting vote against war, yet decades later she is among the few of her contemporaries to have a statue in the Capitol to honor her dedication to pacifism.
You are effectively saying that the indiscriminate slaughter of the Japanese civilian population was justified, due to the actions of a few Japanese leaders. In my opinion, there is no justification for violence against civilians.
Notice that we have a holiday for MLK, and Indians have a holiday to celebrate Gandhi. Something deep inside all of us knows that pacifism is “correct”.
In my reply above, I evoked the memory of Jeanette Rankin, who was the lone dissenting vote against the Pacific War after the Japanese attack on Pearl Harbor (somewhat analogous to the October 7th attack).
It is a natural human tendency to desire that the people who inflict pain upon others to also feel pain inflicted upon them. This has been the human condition since ancient times, and yet the most revered figures in human history have been the pacifists who consistently advocate against violence (e.g. Gautama Buddha, Jesus Christ, Lao Tzu, Gandhi, MLK, etc).
Incredible that they have a term for a war they initiated and subsequently lost. Is whats happening now in Gaza also a Nakba?
Genuinely curious what you think would have happened if all the Islamic countries would not have attacked Israel. Would there be a peaceful Palestinian country? Guess we'll never know....
But that's all history. Your "occupation resistors" decided to rampage through towns and a music festival and massacre everyone they met. And somehow you seem okay with that.
reply