frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Go 1.22, SQLite, and Next.js: The "Boring" Back End

https://mohammedeabdelaziz.github.io/articles/go-next-pt-2
1•mohammede•4s ago•0 comments

Laibach the Whistleblowers [video]

https://www.youtube.com/watch?v=c6Mx2mxpaCY
1•KnuthIsGod•1m ago•0 comments

I replaced the front page with AI slop and honestly it's an improvement

https://slop-news.pages.dev/slop-news
1•keepamovin•5m ago•1 comments

Economists vs. Technologists on AI

https://ideasindevelopment.substack.com/p/economists-vs-technologists-on-ai
1•econlmics•8m ago•0 comments

Life at the Edge

https://asadk.com/p/edge
1•tosh•13m ago•0 comments

RISC-V Vector Primer

https://github.com/simplex-micro/riscv-vector-primer/blob/main/index.md
2•oxxoxoxooo•17m ago•1 comments

Show HN: Invoxo – Invoicing with automatic EU VAT for cross-border services

2•InvoxoEU•17m ago•0 comments

A Tale of Two Standards, POSIX and Win32 (2005)

https://www.samba.org/samba/news/articles/low_point/tale_two_stds_os2.html
2•goranmoomin•21m ago•0 comments

Ask HN: Is the Downfall of SaaS Started?

3•throwaw12•22m ago•0 comments

Flirt: The Native Backend

https://blog.buenzli.dev/flirt-native-backend/
2•senekor•24m ago•0 comments

OpenAI's Latest Platform Targets Enterprise Customers

https://aibusiness.com/agentic-ai/openai-s-latest-platform-targets-enterprise-customers
1•myk-e•27m ago•0 comments

Goldman Sachs taps Anthropic's Claude to automate accounting, compliance roles

https://www.cnbc.com/2026/02/06/anthropic-goldman-sachs-ai-model-accounting.html
2•myk-e•29m ago•4 comments

Ai.com bought by Crypto.com founder for $70M in biggest-ever website name deal

https://www.ft.com/content/83488628-8dfd-4060-a7b0-71b1bb012785
1•1vuio0pswjnm7•30m ago•1 comments

Big Tech's AI Push Is Costing More Than the Moon Landing

https://www.wsj.com/tech/ai/ai-spending-tech-companies-compared-02b90046
3•1vuio0pswjnm7•32m ago•0 comments

The AI boom is causing shortages everywhere else

https://www.washingtonpost.com/technology/2026/02/07/ai-spending-economy-shortages/
2•1vuio0pswjnm7•34m ago•0 comments

Suno, AI Music, and the Bad Future [video]

https://www.youtube.com/watch?v=U8dcFhF0Dlk
1•askl•36m ago•2 comments

Ask HN: How are researchers using AlphaFold in 2026?

1•jocho12•38m ago•0 comments

Running the "Reflections on Trusting Trust" Compiler

https://spawn-queue.acm.org/doi/10.1145/3786614
1•devooops•43m ago•0 comments

Watermark API – $0.01/image, 10x cheaper than Cloudinary

https://api-production-caa8.up.railway.app/docs
1•lembergs•45m ago•1 comments

Now send your marketing campaigns directly from ChatGPT

https://www.mail-o-mail.com/
1•avallark•48m ago•1 comments

Queueing Theory v2: DORA metrics, queue-of-queues, chi-alpha-beta-sigma notation

https://github.com/joelparkerhenderson/queueing-theory
1•jph•1h ago•0 comments

Show HN: Hibana – choreography-first protocol safety for Rust

https://hibanaworks.dev/
5•o8vm•1h ago•1 comments

Haniri: A live autonomous world where AI agents survive or collapse

https://www.haniri.com
1•donangrey•1h ago•1 comments

GPT-5.3-Codex System Card [pdf]

https://cdn.openai.com/pdf/23eca107-a9b1-4d2c-b156-7deb4fbc697c/GPT-5-3-Codex-System-Card-02.pdf
1•tosh•1h ago•0 comments

Atlas: Manage your database schema as code

https://github.com/ariga/atlas
1•quectophoton•1h ago•0 comments

Geist Pixel

https://vercel.com/blog/introducing-geist-pixel
2•helloplanets•1h ago•0 comments

Show HN: MCP to get latest dependency package and tool versions

https://github.com/MShekow/package-version-check-mcp
1•mshekow•1h ago•0 comments

The better you get at something, the harder it becomes to do

https://seekingtrust.substack.com/p/improving-at-writing-made-me-almost
2•FinnLobsien•1h ago•0 comments

Show HN: WP Float – Archive WordPress blogs to free static hosting

https://wpfloat.netlify.app/
1•zizoulegrande•1h ago•0 comments

Show HN: I Hacked My Family's Meal Planning with an App

https://mealjar.app
1•melvinzammit•1h ago•0 comments
Open in hackernews

Discord customer service data breach leaks user info and scanned photo IDs

https://www.theverge.com/news/792032/discord-customer-service-data-breach-hack
183•healsdata•4mo ago

Comments

jml7c5•4mo ago
Per Discord's press release, it appears only a small subset of photo IDs were leaked:

>The unauthorized party also gained access to a small number of government ID images (e.g., driver’s license, passport) from users who had appealed an age determination.

https://discord.com/press-releases/update-on-security-incide...

hn773746483•4mo ago
If a message like "I'm 12", regardless of context is reported, Discord will ban the account & hold it hostage until user sends selfie + ID to them via support. (the compromised portal, not a third party app dedicated to this)

They intentionally chose NOT to disclose a date range or even how many ID tickets compared to standard tickets were leaked.

BoredPositron•4mo ago
Not going to defend discord here, I hate them with a passion but COPPA violations have the potential to kill your company.
chatmasta•4mo ago
You seem to be reading the press release language exactly as they'd like you to read it.

Users only upload their government ID to Discord when the "Face Scan" [0] incorrectly estimates their age as being less than 18. Discord could reasonably classify this as a "small number" of users who need to upload their government ID image. That wouldn't preclude it from also being every user who needs to upload their government ID image — unless there is some other system that also requires them to upload it?

With that in mind, here's a rephrasing of the same statement:

> The unauthorized party also gained access to all uploaded government ID images.

Their press release does NOT say it's a small subset of photo IDs. It says a "small number" of government ID images — nothing about percentages. This would be consistent with the "small number" of users who need/choose to appeal an incorrect age estimation from Face Scan.

[0] https://support.discord.com/hc/en-us/articles/30326565624343...

squigz•4mo ago
I'm not sure why this is being downvoted. Commenter is entirely correct. If someone has an answer to their question that would add credibility to Discord's phrasing and GP's interpretation, I'm all ears, but otherwise it does seem like this is the case, and every ID they've collected has been leaked, not a subset.

(To say nothing of... does it matter the amount of IDs leaked?)

rpdillon•4mo ago
This comment is a fantastic study on how to adversarially read press releases like this. I suspect it's exactly correct: likely all photo IDs were leaked, but they decided to cast it as a small number by implicitly comparing it to the number of all Discord users. I guess we'll have to wait and see if that's actually correct. We may never find out.
sevenseacat•4mo ago
There are two options for verifying your age on Discord - face scan OR uploading government ID. So some people may have uploaded their ID instead of doing the face scanning, for whatever reason.
buzer•4mo ago
> for whatever reason

For example if the face verification failed and you need to file an appeal which requires uploading government ID. That's likely sizeable number of users, especially since the breach happened shortly after the requirement was implemented and many existing users had to do it.

Fnoord•4mo ago
I don't know about EU but in NL no company may ask you for your ID. Only government may. So if they insist, I show a censored version which hides vital data. There's also Yivi (Irna) an application which only shares (after verification) certain data like 'are you over 18 y.o.' (age of legal adolescence, driving age, drinking age) or something like your email address. Because companies CS never delete such data after verification. They sit on a goldmine of data, while data is a toxic asset (as per Schneier's essay).
mono442•4mo ago
Is this true even for financial services like for example cryptocurrency exchanges?
PaulKeeble•4mo ago
This was inevitable the moment they started taking government ID for proving age. It was a terrible idea, it was made worse by the companies themselves being unproven. This will lead to substantial ID theft crime in the future, as many predicted. If its on the internet someone will get it, even the most capable internet companies have been hacked.
fusslo•4mo ago
I am not going to give youtube a copy of my ID just to watch videos with bad words in them.

I hate what the internet is becoming through government and corporate policies

chatmasta•4mo ago
My Google account is 21 years old and I still get asked to verify my age is older than 18 years.
cwbriscoe•4mo ago
What country are you in? I have never been asked to verify my age and my account is the around the same age.
chatmasta•4mo ago
My account was created in the US and it happens occasionally — regardless of country — when some YouTube video is deemed too gore-y for Google to allow me to see. It seems totally arbitrary, but on the other hand I never watch the videos so maybe they're protecting my innocence.

I don't think country has an impact. I've experienced it in both US and UK with extensive years spent in both.

baobun•4mo ago
I'm of two minds on this.

On the one hand, it would be such an obvious proof of age that you've had the account for 21 years so why not pass you.

On the other, this would become a form of grandfathering such that all of us oldtimers and people in the establisent never directly see and experience the impact of these policies. It's mostly in the younger generations (still adults but their accounts may only be 5-10y) and people in exposed situations who get impacted.

So while it seems silly, at least process becomes visible.

chucksta•4mo ago
You missed the obvious one, it creates a black market for old accounts
baobun•4mo ago
That market already exists and not really something I care about.
Razengan•4mo ago
In all fairness you could have taken over the account of the human host you burst out from.
BrandoElFollito•4mo ago
I have a premium account and I still get all dirty words bleeped and st**ed. This is insane, I wish it were a European company where we are not afraid of words.

I understand moderation for obvious hate speech or violence (of course "obvious" means something different for everyone) but sex or fuck are normal words for normal adults.

ranger_danger•4mo ago
youtube demonetizes videos that have "too much" cursing in them
BrandoElFollito•4mo ago
I know, I am aware of the consequences of putting "inappropriate" content. The idea itself is flawed.
Razengan•4mo ago
> This was inevitable the moment they started taking government ID for proving age.

Who wants to bet that this was the intended outcome all along?

throw3141592•4mo ago
Make storing personal data which is not essential to normal operation illegal.

It really is that simple.

debazel•4mo ago
It isn't because age verification has made storing personal information like this an "essential" operation.
BoredPositron•4mo ago
You don't need to store the information after verification.
debazel•4mo ago
Discord doesn't store ID indefinitely either, but there is a time frame, both between data submission and processing, as well as between the start of the breach and the end, during which the data can be leaked.
subscribed•4mo ago
Absolutely untrue. Make "user proved with ID they're 18+" an immutable flag of the account, and delete the toxic data you verified to prove it.
palmfacehn•4mo ago
Regulation 1 mandates data collection, creating unintended consequences. Now, regulation 2 is required to counter the effects of regulation 1. Regulation 2's unintended consequences are similarly either unknown or ignored. This suggests that regulation 3 may be necessitated and that the trend may continue indefinitely.

In theory infinite regulations would suggest that no one would be permitted to do anything eventually. However, before we reach that point, the cost of compliance will be so high that publishing websites will become untenable.

An equilibrium of regulatory capture favoring large publishers will likely emerge before this point. Those large interests will have the resources to influence regulatory outcomes. Their incentives will include maintaining a sufficiently high barrier to entry while optimizing their own compliance costs.

hn773746483•4mo ago
Comment I wrote on the other thread (which didn't get any traction at all):

some key facts Discord are maliciously intentionally withholding:

(approx.) amount of affected users, seeing hundreds of comments on reddit + twitter

tickets timespan, I personally have multiple support accounts, one has only one ticket from July which got the email

affected ticket categories

whether phone numbers were leaked (can lead to further attacks such as SIM swapping)

whether addresses were leaked (they carefully use language "limited billing information" rather than stating the exact pieces)

hn773746483•4mo ago
Turns out when you're dealing with millions of users "small number of government IDs" means a measley... 2 million, no biggie.

https://x.com/vxunderground/status/1975834621503062495

https://x.com/IntCyberDigest/status/1975846997568737666

https://x.com/IntCyberDigest/status/1975847000978694317

phaylon•4mo ago
I've felt kind of miffed in the past for not being able to join Discord communities. Discord always wanted my phone number, and I wasn't ready to share that.

I am no longer miffed :)

tangerines777•4mo ago
Oh shit I received an email from discord saying some of my personal data on my discord account got breached. I have never used discord support aside from the one time where I contacted support to try to get my original discord account back because I lost my email but it was inevitable I didn't link my discord with any credit card info but maybe my phone number? What should I do now??
noir_lord•4mo ago
Yet another reason (if one where needed beyond the obvious stupidity) why the Online Safety Act was a ruinously stupid piece of legislation.
kotaKat•4mo ago
The best part is the ticket they say I’m a part of the breach with… Discord literally never even acted on it. They let the ticket go to the void and never had anyone in support answer it.

Imagine a place…

sevenseacat•4mo ago
And a few people thought I was being ridiculous by not providing my ID to verify to Discord that I am over 18. How sadly predictable.
Razengan•4mo ago
Effin hell, and they don't even let you remove your payment method from your account, just like Anthropic/Claude. Who needs to be smacked in the head to be taught that basic bit of user privacy/security?
horseradish7k•4mo ago
cancel first, then you'll be allowed to remove it