-
Tweets556
-
Followers119
-
Following247
-
Likes765
After more than 6 months of hard work, we are thrilled to disclose #AhoiAttacks that break confidential computing offered by AMD SEV-SNP and Intel TDX with malicious interrupts. ahoi-attacks.github.io
See how Google's security engineering team handles rollouts at scale, so we can safely enforce Strict CSP, Trusted Types and other security features on 100s new services yearly. bughunters.google.com/blog/589651289…
#io_uring: runs fast, but in the wrong direction? "io_uring vulnerabilities were used in all submissions which bypassed mitigations" ChromeOS: disabled io_uring Android: restricted io_uring GKE: disabling io_uring disabled on Google servers io_uring LTS vulns no longer accepted
#io_uring: runs fast, but in the wrong direction? "io_uring vulnerabilities were used in all submissions which bypassed mitigations" ChromeOS: disabled io_uring Android: restricted io_uring GKE: disabling io_uring disabled on Google servers io_uring LTS vulns no longer accepted
Google will phase out third-party cookies for a testing group of 1% users at the beginning of 2024. Full deprecation of third party cookies in Q4 of 2024. The entire ecosystem is shifting. developer.chrome.com/blog/shipping-…
Google will phase out third-party cookies for a testing group of 1% users at the beginning of 2024. Full deprecation of third party cookies in Q4 of 2024. The entire ecosystem is shifting. developer.chrome.com/blog/shipping-… https://t.co/l5I4oWR8L8
You can’t make this shit up. Sophos sales: if the ransomware’d hospital had use Sophos it wouldn’t have happened. Hospital CIO: well we *do* use Sophos.
I think the situation at @LastPass may be worse than they are letting on. On Sunday the 18th, four of my wallets were compromised. The losses are not significant. Their seeds were kept, encrypted, in my lastpass vault, behind a 16 character password using all character types.
"How security professionals are being attacked: A study of malicious CVE proof of concept exploits in GitHub" This research paper found that ~10% PoC repositories on Github were malicious 😬 arxiv.org/pdf/2210.08374… #infosec #cybersecurity #bugbounty #bugbountytips
Yanluowang ransomware group was ransomed (?). Their onion site was breached, displaying a message that says "time's up"[sic] and linking downloads of their leaked internal communications * Image 1 is their onion site defaced * Image 2 is all of their known public posts
It's a pleasure to announce the release of open-obfuscator: a free and open-source solution for obfuscating Android and iOS applications (Java/Kotlin, C/C++/Objective-C) romainthomas.fr/post/22-10-ope… obfuscator.re
TIL that you can bypass Windows Defender by setting your computer name to HAL9TH. Who the hell thought this was a good idea?
Dans l'exercice Polaris 21, une frégate de la force Bleue à été détruite par la force Rouge suite à une volée (14) de missiles envoyée sur une position trouvée sur le compte Snapchat d'un marin de la frégate (selon @amiralVandier) Nouvel exercice Polaris prevu en 2023 #euronaval
“This is not a happy talk. Apple has made things way harder for us.”
Today, we are publishing several practically-exploitable cryptographic vulnerabilities in the Matrix (@matrixdotorg) standard and their flagship client Element, with Daniel Jones (@djwj_), Benjamin Dowling (@DowlingBJ) and Martin R. Albrecht (@martinralbrecht).
Every now and then I remember that client who got hit by Ransomware and lost multiple VMs because they had no backup. Then realized that TAs had exfil'd the VMs. They didn't pay the ransom, waited for their data to be leaked and downloaded the VMs to restore the lost data.
I've ported the OpenBSD pledge() system call to Linux. I think it's the fastest, simplest, most lightweight way to sandbox programs to date. justine.lol/pledge/
We're seeing many iOS attacks in the wild recently. 0-clicks and 1-clicks are actively circulated out there. Sophisticated payloads. Stay alert: watch out for issues using Microphone/Camera and sudden reboots. DMs are open. zecops.com/contact/free-t…
CVE-2022-26925, the bug marked as "actively exploited" in today's Patch Tuesday is the PetitPotam vuln fixed back in Aug 2021...and seems to have been reintroduced. Not sure yet whether to treat this as #itw0days & have some discussions I want to have first. WDYT?
CVE-2022-26925, the bug marked as "actively exploited" in today's Patch Tuesday is the PetitPotam vuln fixed back in Aug 2021...and seems to have been reintroduced. Not sure yet whether to treat this as #itw0days & have some discussions I want to have first. WDYT?
@0xcharlie Snyk wasn't alone. Reversing Labs had the same finding blog.reversinglabs.com/blog/npm-depen…
Cursed C++ of the day: int main() { int i = 0; (i = 12) = i++; return i; } The program returns:
Marco Elver @maelver
363 Followers 130 Following Build reliable systems. Tweets about: Open source & Linux kernel. Opinions are my own.
polict @polict_
1K Followers 270 Following The opinions stated here are my own, not those of my company.
.R @1337Rayan
0 Followers 523 Following
Reseshaysm @reseshaysm98132
11 Followers 908 Following Follow me, maybe it's the beginning of our fate, we can talk
Allison @millerallison47
279 Followers 3K Following
Sid Hussmann @SidHussmann
85 Followers 73 Following interested in building trustworthy systems. CTO and co-founder of @gapfruit
Nadia @estrada_nadia53
315 Followers 3K Following
Kameleonre_ @Kameleonre_
23K Followers 2K Following 😌Gaming Scene Enthusiast!! 🤓Github: https://t.co/uidv6alFuj 😏GoldHEN Discord: https://t.co/m615avtUOe
Yifan Bao @Yifan_Bao__
58 Followers 1K Following working on high performance computing for AI training and deployment; foundation model deployment on edge devices
Glen Desoto @GlenDesoto
372 Followers 2K Following When you're writing a novel that takes place on a submarine, it's not a bad idea to know the name of the instrument that the captain speaks through. - L. Donner
Marcel Böhme👨�... @mboehme_
6K Followers 1K Following Software Security @maxplanckpress (#MPI_SP), PhD @NUSComputing, Dipl.-Inf. @TUDresden_de Research Group: https://t.co/BRnFNNgynB
Gian-Luca Frei @gianlucafrei
54 Followers 54 Following
Ϲhristian Knabenhans @cknabs
282 Followers 418 Following PhD student @EPFL; ex-@ETH. Taking privacy-enhancing crypto (SNARKs, FHE & co) from theory to practice, and back. https://t.co/GbgoBtq3h4 🇨🇭🇫🇷 🏳️🌈
don mancini @yusuf90089128
37 Followers 1K Following жизнь, полная борьбы ,,,, wird nicht aufgeben, bis der Atem stoppt
Martin Nguyen @_strongcourage
1K Followers 5K Following Offensive Security Researcher | OSCP, PACES | 🇻🇳🇸🇬🇫🇷🇦🇺🇩🇪🏴🇧🇪🇪🇸🇷🇸🇬🇷🇳🇱🇮🇹🇮🇪🇪🇪🇵🇹🇦🇹🇸🇰
Cycode | Complete ASP... @CycodeHQ
1K Followers 4K Following Complete ASPM providing visibility, prioritization & remediation at scale. Standardizes developer security without slowing down the business.
Rehackable Paper @rehackable
110 Followers 199 Following Retweeting the OSS reMarkable community. Inspired by reHackable/awesome-reMarkable... https://t.co/QNLr1OxxQv
Yko&Co (STARCODE: LAY... @YkoandCo
399 Followers 5K Following buy: https://t.co/2TRTAyh6zb #ShadyHeadless STARCODE: LAY
eikendev @eikendev
78 Followers 239 Following Corp-speak translator, business therapist, professional proofreader with a serious love for cyber. Using magic PowerPoint macros to make problems disappear.
. @useretail
38 Followers 3K Following
gorsonw @gorsonw
24 Followers 702 Following
Anat Ziv @AnatZiv2
141 Followers 733 Following Sister of mercy. Fashion. TLV. Hacking. Reverse Engineering 💗
Sugary ™ @moh5mmed_siddiq
1K Followers 646 Following
Hex Fish @0xf15h
120 Followers 1K Following
Sergi Granell @xerpi
2K Followers 3K Following MSc in Computer Engineering @ UPC. 2022~2023 福岡 Fukuoka, 九州大学で研究生.
Herald Sunico @HeraldSunico
31 Followers 711 Following
RyeGuySolutions @SolutionsRye
7 Followers 158 Following I like programming and diy projects of any sort. I enjoy soldering and diagnosing electronics as well as modifying game systems in any form. knowledge is power.
🇪🇬Ahmed Wael�... @shadooo8525
104 Followers 2K Following أنا انسان مُهيأ دائمآ للتجاوز .. فلا تعتقد ابداً انّك محطتي الأخيرة🙏🏼🖤
USiciliano01 @Siciliano01U
0 Followers 72 Following
Macrike @Macrike
587 Followers 3K Following
Daniel Maslowski aka ... @OrangeCMS
2K Followers 5K Following cpuvangelist \o/ #app & #web #developer | #engineering #software, #firmware, #platforms, #systems & #interfaces
AAAAA @itslaalo
9 Followers 238 Following
king lilac @sn0wyra1n4
173 Followers 3K Following
nakilepeht @nakilepeht
61 Followers 6K Following
Poison Jam @Kawamito
31 Followers 363 Following Tecnologo, informatico, creador de contenido 🎮😎👌🏻 #MrChuks
Osama Elganzory @oelganzory00
49 Followers 542 Following News General News World News Journalists Sports General News News World News Journalists Sports
rance @myamura222
1 Followers 1K Following
Marco Elver @maelver
363 Followers 130 Following Build reliable systems. Tweets about: Open source & Linux kernel. Opinions are my own.
polict @polict_
1K Followers 270 Following The opinions stated here are my own, not those of my company.
BSides Bern @BSides_Bern
143 Followers 63 Following Brought to you by BSides Switzerland (@BSidesHelvetia) We are @BSidesZurich cousin. Register to our newsletter at https://t.co/OUzUEoutQd #BSidesBE #StayTuned
BSides Switzerland @BSidesHelvetia
38 Followers 17 Following We bring you @BSidesZurich and @BSides_Bern. Subscribe to our newsletter to stay up to date with all the events at https://t.co/qw1SMnD3sJ
offensivecon @offensive_con
26K Followers 2 Following OffensiveCon Berlin is a technical international security conference focused on offensive security only. Organised by @Binary_Gecko. Stay tuned #OffensiveCon26.
SECTRS @ ETH Zurich @sectrs_ethz
80 Followers 0 Following Secure & Trustworthy Systems Group @CSatETH @ETH Zürich. Led by Shweta Shinde @shw3ta_shinde
Vigilant Labs @vigilant_labs
3K Followers 3 Following Official account of Vigilant Labs (https://t.co/PzW4HkfAwd).
Ralf Sasse @RalfSasse
233 Followers 225 Following Senior Scientist, Information Security Group, ETH Zurich
exploits.club @exploitsclub
2K Followers 110 Following A VR, RE, and Exploit Dev weekly newsletter | Join the club Contact: [email protected]
Cristina Cifuentes @criscifuentes
2K Followers 287 Following Latina, migrant, mother and wife, researcher, teacher, mentor, leader. Mother of decompilation
Phil Venables @philvenables
14K Followers 590 Following All about cyber, resilience, risk, AI - at scale. Partner - Ballistic Ventures / Google - Strategic Advisor / 4 x CISO / Board Director / Chief Risk Officer
dmnk.bsky.social @domenuk
5K Followers 512 Following 【DΞCOMPILΞ NΣVΞR】 Android Red Team @google Fuzzing @aflplusplus CTF @enoflag (opinions my own)
Julien Bachmann @milkmix_
2K Followers 622 Following security engineer @google, organizer @blackalpsconf, re/pwnable and mountain stuff. Opinions are my own https://t.co/Wb4oBNQq20 @[email protected]
[email protected]... @0xdea
14K Followers 19 Following When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl.
Dataflow Security @dfsec_com
5K Followers 4 Following
RET2 Systems @ret2systems
12K Followers 1 Following We strive to reimagine vulnerability research, program analysis, and security education as it exists today. An @RPISEC corporation.
landave @0xlandave
552 Followers 6 Following PhD in theoretical cryptography. Vulnerability research & information security enthusiast.
sakura @eternalsakura13
8K Followers 189 Following Lead Security Researcher @zellic_io. 2022-2024 Top 3 Chrome VRP. 2023 Top 2 Facebook Whitehat. 2025 MSRC MVRs 9th. BlackHat Asia/USA & Zer0Con speaker.
Jesse D'Aguanno @0x30n
2K Followers 611 Following Hacker, Vuln Research, 2x winner DEF CON CTF, Founder & CEO Blackwing Intelligence (@blackwinghq), not a CISSP (@[email protected])
lcamtuf @lcamtuf
38K Followers 498 Following Substack: https://t.co/yFvmNisGW3 Homepage: https://t.co/iFAXZxCO5H
David Jacoby @JacobyDavid
2K Followers 50 Following Hacker | Pwnstar | Researcher | Advisor | Writer | Coder | TV-hacker | TEDx | Public Speaker | Nerd | HACKAD_
Ben Rothenberger @ben_rothen
190 Followers 241 Following Security Engineer & Consultant. Dr. sc. ETH (Netsec). Rust enthusiast. Personal account.
stephen @_tsuro
10K Followers 527 Following @v8js security, CTFs and CPU vulnz. LCHL. @[email protected]
Sid Hussmann @SidHussmann
85 Followers 73 Following interested in building trustworthy systems. CTO and co-founder of @gapfruit
Linux Kernel Security @linkersec
9K Followers 0 Following Links related to Linux kernel security and exploitation. Maintained by @andreyknvl and @a13xp0p0v. Also on https://t.co/GVE11dpBb8 and https://t.co/YpxPWXnA6Z.
Lauritz @_lauritz_
2K Followers 1K Following IT-Security Researcher, Pentester and Bug Hunter. Passionate about 💻, 🤽♂️, ⚜️, 🎸 and ⚽ (@VfLBochum1848eV ) #Kaeferjaeger + H1 Ambassador
Ian Beer @i41nbeer
48K Followers 147 Following
PortSwigger Research @PortSwiggerRes
111K Followers 7 Following Web security research from the team at @PortSwigger
pwn.ai @pwn_ai
8K Followers 1 Following Built to breach. Agentic hacking ecosystem in the works. coming soon. Built by the amazing team @OctagonNetworks
Felix Gröbert @fel1x
4K Followers 623 Following Principal Engineer, Product Security Engineering at Google Cloud. Opinions own. Tweets deleted periodically.
Joshua J. Drake @jduck
28K Followers 2K Following Securing the future through modern technology. Founder and Software Security Specialist at @magnetitesec
dragosr @dragosr
24K Followers 9K Following Stop, Think, Pwn! (see also @[email protected], https://t.co/BjclXYWQ9R for alternate)
Tib3rius @0xTib3rius
68K Followers 586 Following High Queen of the Cybers | Educator | Content Creator | UwU-Anointed Wapp King | Ex-Brit | https://t.co/04RRExvxXj (he/him) 🇺🇸 I run gameshows at DEF CON.
Q-recon @q_recon
213 Followers 1 Following Email: [email protected] WeChat ID: Q-recon Signal: +972548831331
Alex Matrosov @matrosov
19K Followers 2K Following 🔬Founder & CEO @Binarly_io, #codeXplorer, #efiXplorer, @REhints and "Rootkits and Bootkits" book. Previously worked at Nvidia, Cylance, Intel, ESET, Yandex.
Stephan Berger @malmoeb
28K Followers 1K Following Head of Investigations @InfoGuardAG https://t.co/A5lnFAu7eX
terjanq @terjanq
10K Followers 255 Following security enthusiast that loves hunting for bugs in the wild. co-founder and player of @justCatTheFish. infosec at @google. opinions are mine.
pspaul @pspaul95
1K Followers 851 Following source code connoisseur @Sonar_Research | CTF @FluxFingers | @[email protected]
/* BlazingWind */ @BlazingWindSec
258 Followers 502 Following Security researcher at @GHSecurityLab. Views are my own.
Tarjei Mandt @kernelpool
17K Followers 565 Following
Sonar Research @Sonar_Research
11K Followers 7 Following Cutting-edge security research by @SonarSource to educate the world about code security across all software. We're also at @[email protected] 🦣
Eviatar Gerzi @g3rzi
627 Followers 954 Following Security Researcher interested in reversing, malware analysis, CTFs, PrivEsc vulns, and DevOps security (docker and k8s) ;)
KP Singh @__kpsingh
424 Followers 97 Following Works at Google on Linux Kernel + Security (he/him). Views are my own.Trends for United States
You might like
