[VMG]

Isn't the situation completely analogous to other "ethical hacking" software?

I distinctly remember a very similar discussion around firesheep 12 years ago: https://www.computerworld.com/article/2469667/firesheep-fire...

https://news.ycombinator.com/item?id=1828955

> There are probably going to be a lot of people negatively affected by this for quite some time to come. One thing to point out is that there are grades of things. There is "public", and then there is "top hit on Google". Similarly, there is "insecure" and then there is "simple doubleclick tool to facilitate identity theft".

> How many millions of dollars and man hours is it going to take to lock down every access point? How many new servers are going to be needed now that https is used for everything and requests can't be cached?

[jacquesm]

Indeed it is, but I'm interested in this particular author's stance on this, prompted by their disclaimer which clearly indicates that they realize that there is the risk of abuse, and an AMA seems to be an excellent opportunity to gain some insight.

[VMG]

I agree.

I'm not OP but I would answer like this: abuses of this technology are inevitable and can only be mitigated by counter-software (which leads to an arms race).

The release of this source code could kickstart the development of deepfake detection software.

Or maybe in general people need to put less weight on video evidence.

[giorgiop]

Please read this https://www.biometricupdate.com/202205/sensity-alleges-biome...

We have warned many vendors about the vulnerability of their commercial biometrics software. The threat is currently downplayed by the whole industry. We hope this release to be a wake up call and that our team will be joined by other experts in raising the alarm.

Deepfakes are already used for spoofing KYC around the world. This is already happening, and not by using `dot`.

[jacquesm]

Interesting, I will wait for the OP to answer before responding to you.