Zack Korman
@ZackKorman
CTO @ Pistachio. We build security stuff.
Unlike most people on Twitter, I’m actually using GPT3 in a production system. The mistake people are making is they are asking “how can I use this to automate a smart person’s job”, when they should be asking “what would I do if I had unlimited dumb people”
People will say “you can tell a lot about a person by how they treat the waiter” and then go back to the office and send the most abusive and unhinged email to some customer support rep at a SaaS vendor.
Kinda funny watching porn bots commenting on Microsoft Active Directory and on-prem SharePoint.
The other day I asked Copilot to find a file for me and its full response was, “Great, give me a second to find that for you.”
Today we’re releasing GitHub Spark — a new tool in Copilot that turns your ideas into full-stack apps, entirely in natural language.
Wait so SharePoint is a thing you can run on-prem? And then you can expose that on-prem SharePoint to the internet?
Giving a vendor time to fix a vulnerability makes sense, but I can’t help but feel this practice is being abused and therefore produces worse security outcomes. When large orgs want to move fast they absolutely can; taking 90 days to fix a vulnerability is a choice.
Every time a VC posts “AI-first companies can build billion dollar businesses with 10 people because they can use AI agents, not people, to scale”, I’m tempted to send them a deck that is a pure operations play. Put your money where your mouth is. “Walmart but AI”
Funny how these “AI native companies” all have one thing in common and it’s that they are selling AI products. If this take were correct then you’d not have to innovate on product at all. Just operations. Anyone building the first 20 person ExxonMobil?
When I was 18 I forgot to pay for a checked bag, so I was at the airport deciding what to throw away when a woman paid for my bag for me. She said the same happened to her and she only asks I do the same for someone else one day. It’s been 15 years and I’m getting desperate.
feel like people (me) underestimate how much insistence you need about norms for them to work i visited a coffee shop in Maine before catching a flight and, in a rush, accidentally left without paying 😑 i realized what happened a few hours later & called the store to ask how i…
Would love to follow and connect with more people building stuff in the cybersecurity space. Who’s building some cool things? Shout them out…💪🙌
The biggest cybersecurity problems aren’t vulnerabilities, they’re just shitty engineering that makes good security very difficult or impossible.
Microsoft 365 Copilot costs $30/user/month, which is pretty cheap way to let your employees find documents they probably shouldn’t have access to.
Anyone who knows cybersecurity stuff know what happens after I report a security vulnerability to Microsoft? They say it takes a few days just to assign it to a team, but what’s the full timeline?
This was the best thing that could happen to Soham because now every YC founder has to say he’s the best developer ever, otherwise they have no excuse for why they hired him.