frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Codex scraped the ICM website and discovered 2026 Fields Medal winner list

https://phemex.com/news/article/2026-fields-medal-winners-list-leaked-includes-two-peking-university-alumni-92948
32•zaikunzhang•1h ago

Comments

ashu1461•42m ago
Someone used Codex to scrape the ICM website schedule and discovered that the winners list was simply hidden in the front-end code with a "hidden" tag

This is on the devs and feels like a very basic leak which could have exploited in the non LLM world as well.

ajb•22m ago
Yeah that happens all the time. Anyone/thing with popular public releases has fans/journeys scraping the website looking for unreleased material or scoops.

In the early days one of the high profile soaps in the UK published their "catch up" summaries for the week ahead which you could get just by editing the date in the URL. But back then not so many people were looking, so they were doing it for months...

rurban•34m ago
It's Wang Hong, my god. Cannot they still don't write proper Chinese names?
bananaflag•30m ago
Wikipedia says Hong Wang while acknowledging that the native form is Wang Hong and that they are using the Western name order.
grommz•5m ago
Nobody says Jinping Xi or Zedong Mao.
bananaflag•29m ago
This is sad, almost as sad as the Deathly Hallows pre-release leak.
zaikunzhang•27m ago
Related to the earlier discussion:

https://news.ycombinator.com/item?id=48902814

See also

Zhihu (Chinese Reddit): https://www.zhihu.com/question/2060133066643879544/answer/20...

Reddit: https://www.reddit.com/r/math/comments/1urv4id/comment/oxak6...

picafrost•26m ago
> Hong Wang will become the third female mathematician in history to receive the Fields Medal

Interestingly, if true, it will also be the first time an MIT PhD graduate has won the Fields Medal.

edoceo•25m ago
I've been working on a site. It's new, domain is only a few weeks old. It's got SSL, so all the bots know it exists. It's never had any sub-pages exposed, just the placeholder lander, no links.

Somehow in Google search one of the unguessable pages is indexed. We have used Claude and Gemini to assist with some design aspects.

I'm thinking some aggressive data ingestion/indexing is happening by all the bots in the quest for frontier models.

resonious•18m ago
I've also seen Google indexing pages with random values in the path that don't get linked to statically (server asks for the URL then redirects to it immediately). I'm pretty sure they index straight out of the Chrome address bar.
foobarbecue•13m ago
Holy crap I hope that's not true. I've also had unguessable pages indexed, though, and don't have an explanation.
nicce•7m ago
Something worth inspecting further. We know that Chrome stores and sends the browsing history but this is an interesting vector.
st_goliath•4m ago
Yep. I remember a similar story as GP described from a friend back in 2008. The site he was working on that wasn't linked to yet was suddenly indexed after he checked out what it looked like in the new "Chrome" browser that Google had just released, causing some moderate panic on his end.
micromacrofoot•6m ago
ai bots will have more privacy than we do
efficax•5m ago
twist: codex also wrote the code that placed the winners list in a hidden element

Switching an LLM's tier changes its "best tool" answer about half the time

https://modelsagree.com/labs/model-tiers
1•arephan•20s ago•0 comments

Show HN: Proton – A pure Go GUI library with zero CGO and API immunity

2•CzaxTanmay•56s ago•0 comments

Show HN: I RL-trained an agent that trains models with RL (for –$1.3k)

https://github.com/Danau5tin/ai-trains-ai
2•Danau5tin•1m ago•0 comments

Beautiful Type Erasure with C++26 Reflection

https://ryanjk5.github.io/posts/rjk-duck/
2•RyanJK5•1m ago•1 comments

Now, defenders are embracing the prompt injection, too

https://arstechnica.com/security/2026/07/now-defenders-are-embracing-the-prompt-injection-too/
2•thm•3m ago•0 comments

Lenz – A fact-checking API for AI-generated content

https://lenz.io/
2•kostaj•3m ago•0 comments

Show HN: EdgarKit – a real-time JSON API for SEC EDGAR filings

https://edgarkit.com/
2•mathewarena•3m ago•0 comments

The Unexamined Model Is Not Worth Training

https://bastian.rieck.me/blog/2026/unexamined/
2•Pseudomanifold•3m ago•0 comments

A Trusty Boot Key (Ventoy Alternative), for Bastille Day

https://codeberg.org/aol/trusty-boot-key
2•mixmastamyk•4m ago•0 comments

We need a PIT Crew for news

https://werd.io/we-need-a-pit-crew-for-news/
3•benwerd•7m ago•0 comments

The US-China AI arms race has taken an unexpected turn

https://www.newscientist.com/article/2532952-who-is-winning-the-ai-arms-race-between-the-us-and-c...
2•speckx•7m ago•0 comments

Using self-hosted Umami for iOS app analytics

https://hjerpbakk.com/blog/2026/07/14/umami-for-apps
2•Sankra•8m ago•1 comments

Lessons learned by a non-developer learning to deploy apps in production

https://maximerumpler.substack.com/p/how-i-manage-ai-as-a-non-developer
2•MaximeRumpler•9m ago•0 comments

Microsoft Surface Laptop 8 review

https://www.theguardian.com/technology/2026/jul/14/microsoft-surface-laptop-8-review
2•tosh•10m ago•0 comments

Human rabies despite PEP: review of breakthrough cases after zoonotic exposures

https://pmc.ncbi.nlm.nih.gov/articles/PMC11403119/
3•keepamovin•11m ago•0 comments

GigaWiper: Anatomy of a destructive backdoor assembled from multiple malware

https://www.microsoft.com/en-us/security/blog/2026/07/09/gigawiper-anatomy-of-a-destructive-backd...
2•andrewstetsenko•12m ago•0 comments

Don't Panic Cyberdeck

https://www.printables.com/model/1775113-dont-panic-cyberdeck
2•surprisetalk•12m ago•0 comments

Coding agents think ahead of time

https://arxiv.org/abs/2607.05188
3•andre15silva•14m ago•0 comments

Ask HN: Should I Promote My SaaS to get first 100 Customers without budget

3•HSK11•14m ago•1 comments

Show HN: PDF to Markdown with a side-by-side check so you can see what broke

https://pdfmarkdown.app/
3•jisbuidling•15m ago•0 comments

Jailbroken Gemini spun up new C2 server for Russian fraudster in just 6 minutes

https://www.theregister.com/research/2026/07/14/the-bots-are-alive-jailbroken-gemini-spun-up-new-...
3•speckx•15m ago•1 comments

Michael Freedman: Compression Is All You Need [video]

https://www.youtube.com/watch?v=RhA6hnh-peM
2•nill0•16m ago•0 comments

Convert local – A 100% private, client-side file converter

https://convertlocal.pages.dev/
4•rrrpro123•16m ago•7 comments

Argentina court recognizes two goldfish as sentient beings with rights

https://www.cnn.com/2026/07/13/americas/argentina-goldfish-sentient-latam-intl
3•breve•17m ago•0 comments

Show HN: 3D printer simulator with in browser firmware execution

https://github.com/Kodoque1/rextrude
2•ForgotIdAgain•17m ago•1 comments

I automated the $2k investing course into a daily ticker alert

https://www.secretfig.com/
2•bolshchikov•17m ago•0 comments

The Boundary of Computation(2023) [video]

https://www.youtube.com/watch?v=kmAc1nDizu0
2•nill0•18m ago•0 comments

Adapting offensive security for the AI agent age

https://engineering.taktile.com/blog/adapting-offensive-security-for-the-ai-agent-age/
3•mmoon2•19m ago•0 comments

Differentiable Fortran with LFortran and Enzyme

https://docs.pasteurlabs.ai/projects/tesseract-core/latest/blog/2026-07-09-enzyme-lfortran-autodi...
2•dionhaefner•20m ago•1 comments

Cutia: Open-source video editing tools like CapCut that can be used in a browser

https://cutia.msgbyte.com/en
2•nogajun•22m ago•0 comments