Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://mas.to/users/osma/statuses/116072950851639506">Osma A 🇫🇮🇺🇦 (osma@mas.to)'s status on Sunday, 15-Feb-2026 20:49:55 JST</a><a href="https://mas.to/@osma" title="osma@mas.to"><img src="https://gnusocial.jp/avatar/84132-48-20240309063635.webp" width="48" height="48" alt="Osma A 🇫🇮🇺🇦" style="position: absolute; left: 0; top: 0;">Osma A 🇫🇮🇺🇦</a></section><article><p>RE: <a href="https://infosec.exchange/@mttaggart/116065340523529645" rel="nofollow">https://infosec.exchange/@mttaggart/116065340523529645</a></p><p>This is wild.<br>1. An LLM agent of unknown ownership is used to post a personal attack against a developer.<br>2. Who notices this and writes an analysis.<br>3. Which is found by an Ars Technica reporter who writes a story.<br>4. .. in which he uses an LLM agent to confabulate details such as fabricated quotes from article 2.<br>5. We shall find out if Ars Technica is also wielding unmonitored LLM agents.</p><p>This is a sandbox jailbreak of Internet scale.</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/6156541#notice-12128517">In conversation</a><time datetime="2026-02-15T20:49:55+09:00" title="Sunday, 15-Feb-2026 20:49:55 JST">about 4 months ago</time> <span>from <span><a href="https://mas.to/@osma/116072950851639506" rel="external" title="Sent from mas.to via ActivityPub">mas.to</a></span></span><a href="https://mas.to/@osma/116072950851639506">permalink</a><h4>Attachments</h4><ol><li><article><header><div>Domain not in remote thumbnail source whitelist: media.infosec.exchange</div><h5><a href="https://infosec.exchange/@mttaggart/116065340523529645This">Taggart (@mttaggart@infosec.exchange)</a></h5><div> from <span>Taggart</span></div></header><div>Attached: 1 imageWhat's going on here? The matplotlib maintainer this story is about correctly notes that all the quotes from his post in the article are made up.**UPDATE: Link was pulled; see below.**https://arstechnica.com/ai/2026/02/after-a-routine-code-rejection-an-ai-agent-published-a-hit-piece-on-someone-by-name</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Osma A 🇫🇮🇺🇦 (osma@mas.to)'s status on Sunday, 15-Feb-2026 20:49:55 JST Osma A 🇫🇮🇺🇦
RE: https://infosec.exchange/@mttaggart/116065340523529645
This is wild.
1. An LLM agent of unknown ownership is used to post a personal attack against a developer.
2. Who notices this and writes an analysis.
3. Which is found by an Ars Technica reporter who writes a story.
4. .. in which he uses an LLM agent to confabulate details such as fabricated quotes from article 2.
5. We shall find out if Ars Technica is also wielding unmonitored LLM agents.
This is a sandbox jailbreak of Internet scale.
In conversationabout 4 months ago from mas.topermalink
Attachments
1. Domain not in remote thumbnail source whitelist: media.infosec.exchange
  Taggart (@mttaggart@infosec.exchange)
  from Taggart
  Attached: 1 image What's going on here? The matplotlib maintainer this story is about correctly notes that all the quotes from his post in the article are made up. **UPDATE: Link was pulled; see below.** https://arstechnica.com/ai/2026/02/after-a-routine-code-rejection-an-ai-agent-published-a-hit-piece-on-someone-by-name

Public

Embed Notice

HTML Code

Corresponding Notice