Belgium seems to want to ban Signal.
-
-
@SethGreen @BoredApeYC @opensea @doodles @yugalabs @DarkWing84 hi Seth I wrote a song for you and your lost monkey jpeg
-
Report on a disinformation bother.
A botnet capable of spreading disinformation on a massive scale, really interesting report from @nisos & @vincas_ciziunas
-
-
-
Crypto. Fraud. Scam. Great thread on a bug that was silently exploited for a year, stealing $30m overall.
🧵👇 What if I told you that Mirror Protocol, up until 18 days ago, was susceptible to the one of the most profitable exploits of all time, allowing an attacker to generate $4.3m from $10k in a single transaction? Here's how I discovered this - by pure serendipity. 🧵👇
PS. They tried hard to obfuscate their cashouts on Ethereum, but we're looking for them, and I hope we find them eventually. My team of researchers and I are hard at work - you can hide IRL, but the blockchain never forgets.
-
Looks like an interesting topic.
How good are SAST tools at detecting C code vulnerabilities, and what types of security bugs are better detected than others? Answers to this can be found in our @issta_conf'22 paper.
📄 mediatum.ub.tum.de/doc/1659728/16…
💾 doi.org/10.5281/zenodo…
With Alexander Pretschner & @banescusebi
-
Wild thread. lol
A team of scientists at Northwestern University in the US have accidentally created overly-aggressive mutant hamsters following a gene-editing experiment. 🐹
They were trying to increase bonding between the lovable animals but failed.
Let's Discuss 👇
trib.al/KQYbMqu
-
Cool research. It allows an attacker to manipulate your phones touch screen from up to 4 cm away after you’ve unlocked it. Ok, cool theoretical research.
https://thehackernews.com/2022/05/attackers-can-use-electromagnetic.html
-
@JasonGeffner I'd just like to interject for a moment. What you’re referring to as Azure, is in fact, Office 365/Azure, or as I’ve recently taken to calling it, O365 plus Azure. Azure is not cloud product unto itself, but rather another free component of a fully functioning O365 system.
-
Well-written blog post about how to approach (Java) security audits, by @frycos
Security Code Audit - For Fun and Fails
-
-
Another type of cyber vulnerability.
One single type of payment terminal (the Verifone H5000), a rather old platform, officially announced End of Life 2018 with some sort of support until 2023, brought down big parts of card payment all over Germany as one of the embedded certificates expired unnoticed on Tuesday.
-
Jordan (@vitalemonntea) and I spent some time understanding CVE-2022-22972 (VMWare Workspace One Access Auth Bypass) as we were very curious about the root cause. If you're interested in understanding this vulnerability, check out our blog.
-
Lol
