1. 1 point Nov 7, 2025

   UK Medical Agency Might Use Gemini Flash Lite

   0 comments tobwen
2. tobwen Oct 31, 2025 parent

   And yes, you can use it with OpenRouter.
3. tobwen Oct 25, 2025 parent

   In Europe, SEPA direct debits can also be withdrawn. But you can expect to receive a reminder with legal action within a few days.
4. tobwen Oct 24, 2025 parent

   My opinion: Without support in libosmium and GDAL, this will remain a marginal phenomenon.
5. tobwen Oct 24, 2025 parent

   The accessibility support (PDF/UA-1) is VERY nice, but there's still still a lot of work to do (-> tables).
6. 1 point Oct 24, 2025

   Ask HN: Do all those AI-generated skills help?

   0 comments tobwen
7. tobwen Oct 23, 2025 parent

   “When using wildcard patterns, this function analyzes the column structure and data types from the first matching worksheet only.”

   Meh… I think I should work on a PR to fix this…

8. tobwen Oct 12, 2025 parent

   Has recently been used to visit "The Matrix" again: https://www.youtube.com/watch?v=iq5JaG53dho&t=1412
9. tobwen Oct 12, 2025 parent

   Hrhr, I'd love to have automatic CODE generation from Scientic Papers :D
10. tobwen Oct 12, 2025 parent

    Indeed... The security breach is already a few days old, and the white hat hacker has informed many major newspapers about it and sent them an incident report. According to these media outlets, several credentials were stored in plain text in the knowledge base, which allowed the white hat access to other services.
11. tobwen Oct 12, 2025 parent

    I just came across this incident involving localmind.ai, a small AI startup out of Innsbruck, Austria (founded in early 2024). The company stated that internal processes and control mechanisms failed and accepted full responsibility for the incident.

    This summary outlines the key events and remediation actions from the official incident reports published by Localmind.ai between October 5 and October 9, 2025.

    Incident overview and initial response (October 5)

    On October 5, 2025, at 05:43 CEST, Localmind detected unauthorized access to its systems. The immediate response was to take all affected systems, including internal platforms and customer instances, offline to contain the breach. Initial measures included:

      - Resetting all passwords and regenerating API keys (e.g., for Notion, SendGrid, Hetzner).
      - Deactivating all user accounts, restricting access to a minimal number of administrators with mandatory two-factor authentication (2FA).
      - Initiating a forensic investigation.
    

    Root cause analysis (October 5, Update #2)

    The breach originated from a misconfiguration in an externally accessible beta-test instance. The flaw granted administrator privileges by default to a newly registered account. The attacker used this access to:

      - Access the integrated automation platform (n8n).
      - Retrieve an unrestricted API key for the internal Notion knowledge base, which contained infrastructure documentation and credentials.
      - Use the compromised information to escalate access further and send emails from an internal account.
    

    The company stated that internal processes and control mechanisms failed and accepted full responsibility for the incident.

    Impact assessment and forensic Updates

      - Scope: The core Localmind platform was not compromised. The attack was confined to administrative interfaces and test environments. A limited number of customer systems were accessed, while on-premise instances showed no signs of unauthorized access.
      - Forensics: Unauthorized logins were traced to IP addresses from VPN providers, complicating attribution. Login activity occurred outside regular business hours (nights, weekends). As of October 8, no evidence of large-scale data exfiltration was found.
      - Data transparency: Localmind offered data exports to customers to conduct their own audits for potential GDPR breach notifications.
    

    Remediation and security hardening measures

    The company initiated a comprehensive infrastructure rebuild and security overhaul.

      1. New infrastructure: A migration of virtual machines to new, Tier IV, ISO 27001/27018 certified data centers with a fully isolated infrastructure was nearly complete as of October 8. Systems are being rebuilt from clean data volumes (e.g., Docker volumes) onto new, hardened hosts.
      2. Access security:
        - Implementation of an F5 Web Application Firewall (WAF) with pre-authentication for each customer instance.
        - Mandatory two-factor authentication (2FA) for all application logins.
        - Deployment of the Wazuh security agent for centralized login monitoring and anomaly detection.
        - All previous service accounts and credentials within automation workflows were deleted, requiring a re-issue.
      3. Automation restriction: Critical automation nodes in n8n (e.g., Execute Command, Read/Write File to Disk) were disabled and will be unavailable in cloud environments going forward.
      4. Enhanced monitoring: Additional security agents were deployed for endpoint security, configuration assessment, file integrity monitoring, and threat intelligence.
      5. Process change: Each customer instance undergoes a manual audit and documentation before restart, with the audit protocol provided to the customer.
    

    Subsequent Attack Attempt (October 9)

    On October 9, Localmind reported a renewed attempt to gain unauthorized access. The new security measures successfully blocked these attacks. The only confirmed impact was a brief, unauthorized text modification on a separately hosted, external development website, which was promptly reverted. The company attributes this attempt to the same threat actor.

    Status as of latest update (October 9, 2025)

    Systems were in a phased, controlled restart process, with customers being kept informed. The company continues to work on audits and security fortifications.

    Sources (as Mementos)

    <https://web.archive.org/web/20250000000000*/https://www.loca...> <https://web.archive.org/web/20250000000000*/https://security...>

12. 27 points Oct 12, 2025

    Major security breach at Austrian AI startup localmind.ai

    6 comments tobwen localmind.ai
13. tobwen Oct 9, 2025 parent

    Warning: There are no sandwiches in this simulation :)
14. 1 point Oct 9, 2025

    Ask HN: CLI AI Agents with Comparism?

    0 comments tobwen
15. tobwen Jul 24, 2025 parent

    Firefoxies for example.
16. tobwen Jul 24, 2025 parent

    What is this “offline”?
17. tobwen Apr 26, 2025 parent

    VBA and the ability to use Office files with embedded VBA are disabled in many corporations… Some malware in the past used VBA for their attacks and Microsoft never added a proper sandbox.
18. tobwen Feb 22, 2025 parent

    Nope, you can compile/download and run it completely from unprivileged userspace.
19. tobwen Feb 19, 2025 parent

    That's exactly what I've been asking myself and I wish I could. I index our huge, nested network drives every night with Everything and can search & find within seconds.
20. tobwen Jan 7, 2025 parent

    But pre-ROHS of course :)
21. tobwen Dec 8, 2024 parent

    It was even crazier in Germany! In 2000, the television station NBC received a radio license for RadioMP3. They broadcasted the charts and entire albums (with covers) via teletext, which could be legally recorded at home. Bit rate 128 kbit/s - simply with a TV capture card. The public broadcaster also transmitted software via “VideoDAT” during its ComputerClub program. However, this required special hardware.
22. tobwen Aug 27, 2024 parent

    Let's discuss this publicly, please. Open Knowledge has the advantage that others also benefit from it.

    About the use case: Ultimately, I just want to enable my team to use different LLMs without having to create an account for each team member. However, it should be possible to upload attachments. RAG is not required at the moment.

23. tobwen Aug 27, 2024 parent

    Thanks it sounds great. I'll definitely have a look at that. Maybe I can connect it to LiteLLM so that we can connect all kinds of models.
24. tobwen Aug 27, 2024 parent

    Thanks, I'll have a look at that. But anything with ‘book a call’ sounds unaffordable for us unfortunately ;)
25. tobwen Aug 26, 2024 parent

    Right now, I'm just looking for something that looks and acts like the ChatGPT-UI (lowest learning curve).

    Our team is very diverse and has no IT background. So we don't use collaborative tools (except MS Teams), but that doesn't stand in the way of productivity - it's powered by chaos.

    Thanks, I'll have a look at TypeMind. It's disappointing that the tool is closed source and that no modifications are possible or permitted. I briefly add in my requirements that I would like to have a self-hosted open source tool.

26. 5 points Aug 26, 2024

    Ask HN: Browser-UI with multi-LLM for the team?

    10 comments tobwen
27. 13 points Jun 7, 2024

    Ask HN: How to make `screen` behave like a native shell?

    6 comments tobwen

This user hasn’t submitted anything.