Skip to content
  • Home Home Home, current page.
  • Moments Moments Moments, current page.

Saved searches

  • Remove
  • In this conversation
    Verified accountProtected Tweets @
Suggested users
  • Verified accountProtected Tweets @
  • Verified accountProtected Tweets @
  • Language: English
    • Bahasa Indonesia
    • Bahasa Melayu
    • Català
    • Čeština
    • Dansk
    • Deutsch
    • English UK
    • Español
    • Filipino
    • Français
    • Hrvatski
    • Italiano
    • Magyar
    • Nederlands
    • Norsk
    • Polski
    • Português
    • Română
    • Slovenčina
    • Suomi
    • Svenska
    • Tiếng Việt
    • Türkçe
    • Ελληνικά
    • Български език
    • Русский
    • Српски
    • Українська мова
    • עִבְרִית
    • العربية
    • فارسی
    • मराठी
    • हिन्दी
    • বাংলা
    • ગુજરાતી
    • தமிழ்
    • ಕನ್ನಡ
    • ภาษาไทย
    • 한국어
    • 日本語
    • 简体中文
    • 繁體中文
  • Have an account? Log in
    Have an account?
    · Forgot password?

    New to Twitter?
    Sign up
EmilyGorcenski's profile
Emily G
Emily G
Emily G
Verified account
@EmilyGorcenski

Tweets

Emily GVerified account

@EmilyGorcenski

Lead Data Scientist, activist, survivor. Was actually assaulted by an actual right-wing terrorist. Opinions belong only to me, especially the bad ones. she/they

Deep Space Nine
emilygorcenski.com
Joined June 2013

Tweets

  • © 2018 Twitter
  • About
  • Help Center
  • Terms
  • Privacy policy
  • Cookies
  • Ads info
Dismiss
Previous
Next

Go to a person's profile

Saved searches

  • Remove
  • In this conversation
    Verified accountProtected Tweets @
Suggested users
  • Verified accountProtected Tweets @
  • Verified accountProtected Tweets @

Promote this Tweet

Block

  • Tweet with a location

    You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more

    Your lists

    Create a new list


    Under 100 characters, optional

    Privacy

    Copy link to Tweet

    Embed this Tweet

    Embed this Video

    Add this Tweet to your website by copying the code below. Learn more

    Add this video to your website by copying the code below. Learn more

    Hmm, there was a problem reaching the server.

    By embedding Twitter content in your website or app, you are agreeing to the Twitter Developer Agreement and Developer Policy.

    Preview

    Why you're seeing this ad

    Log in to Twitter

    · Forgot password?
    Don't have an account? Sign up »

    Sign up for Twitter

    Not on Twitter? Sign up, tune into the things you care about, and get updates as they happen.

    Sign up
    Have an account? Log in »

    Two-way (sending and receiving) short codes:

    Country Code For customers of
    United States 40404 (any)
    Canada 21212 (any)
    United Kingdom 86444 Vodafone, Orange, 3, O2
    Brazil 40404 Nextel, TIM
    Haiti 40404 Digicel, Voila
    Ireland 51210 Vodafone, O2
    India 53000 Bharti Airtel, Videocon, Reliance
    Indonesia 89887 AXIS, 3, Telkomsel, Indosat, XL Axiata
    Italy 4880804 Wind
    3424486444 Vodafone
    » See SMS short codes for other countries

    Confirmation

     

    Welcome home!

    This timeline is where you’ll spend most of your time, getting instant updates about what matters to you.

    Tweets not working for you?

    Hover over the profile pic and click the Following button to unfollow any account.

    Say a lot with a little

    When you see a Tweet you love, tap the heart — it lets the person who wrote it know you shared the love.

    Spread the word

    The fastest way to share someone else’s Tweet with your followers is with a Retweet. Tap the icon to send it instantly.

    Join the conversation

    Add your thoughts about any Tweet with a Reply. Find a topic you’re passionate about, and jump right in.

    Learn the latest

    Get instant insight into what people are talking about now.

    Get more of what you love

    Follow more accounts to get instant updates about topics you care about.

    Find what's happening

    See the latest conversations about any topic instantly.

    Never miss a Moment

    Catch up instantly on the best stories happening as they unfold.

    Emily G‏Verified account @EmilyGorcenski Jan 4

    For my non-tech followers, specifically my activist followers, you should know that the entire tech industry has been freaking out for the last 36 hours because pretty much all computers are now totally fucked.

    9:29 AM - 4 Jan 2018
    • 246 Retweets
    • 606 Likes
    • NYC Music PLOW Colin Walsh Thompson Pedram Taheri Kyla Joe Niswonger Andy Osira spooky sanz🕷 She came undone Cherie Wong 王卓妍
    20 replies 246 retweets 606 likes
      1. New conversation
      2. Emily G‏Verified account @EmilyGorcenski Jan 4

        So uh, "Use Signal. Use Tor," is still good advice, but also.... *gestures vaguely at computers*

        4 replies 44 retweets 195 likes
        Show this thread
      3. Emily G‏Verified account @EmilyGorcenski Jan 4

        If your threat model is basically the Mossad model you should definitely be concerned. If your threat model is "it will be an inconvenience if I have to get identity theft monitoring" then maybe move along merrily.

        4 replies 30 retweets 131 likes
        Show this thread
      4. End of conversation
      1. New conversation
      2. "you get what you give" by new radicals‏ @bog_mummy Jan 4
        Replying to @EmilyGorcenski

        what's the news? sorry just not up on what's happening

        4 replies 1 retweet 8 likes
      3. Emily G‏Verified account @EmilyGorcenski Jan 4
        Replying to @bog_mummy

        A processor-level bug common to a staggering number of processors (ie almost all intel processors from 1995 on) has been discovered that in theory allows an attacker into the rendering of a process, among other things. Basically they can read what your system is displaying.

        4 replies 33 retweets 76 likes
      4. Rich Felker‏ @RichFelker Jan 4
        Replying to @EmilyGorcenski @bog_mummy

        It's not just Intel. Spectre is scarier and affects basically all out-of-order-execution cpu designs including modern ARM (Android & iOS phones), AMD, even some RISC-Vs.

        2 replies 6 retweets 28 likes
      5. Emily G‏Verified account @EmilyGorcenski Jan 4
        Replying to @RichFelker @bog_mummy

        Is that confirmed? Last I read, the researchers hadn't tested it that far.

        4 replies 0 retweets 8 likes
      6. Danny Davos‏ @io_r_us Jan 4
        Replying to @EmilyGorcenski @RichFelker @bog_mummy

        AMD only confirms variation one is in effect (but patches are here) / variation two has near zero risk / variation three has zero risk. Just my 2cents

        1 reply 1 retweet 8 likes
      7. Rich Felker‏ @RichFelker Jan 4
        Replying to @io_r_us @EmilyGorcenski @bog_mummy

        "Variant 1" in the P0 blog notation? That's the attack that makes any kind of JIT'd embedded language (JS, Lua, etc.) unsafe and is probably the most likely to be exploited in the wild right away.

        6 replies 1 retweet 7 likes
      8. Rich Felker‏ @RichFelker Jan 4
        Replying to @RichFelker @io_r_us and

        Rich Felker Retweeted Rich Felker

        For Firefox users, this should largely mitigate it for now:https://twitter.com/RichFelker/status/948963143195267073 …

        Rich Felker added,

        Rich Felker @RichFelker
        Firefox users: about:config javascript.options.baselinejit -> false
        Show this thread
        1 reply 2 retweets 4 likes
      9. 1 more reply
      1. New conversation
      2. Jan  🇪🇺 Wildeboer (transnational citizen)‏ @jwildeboer Jan 5
        Replying to @EmilyGorcenski

        As an insider, I must protest. Yes, it’s bad. But not “the sky falls” bad. Patches/updates are being deployed, mitigation is handled. #Shellshock was worse. Far worse IMHO.

        1 reply 0 retweets 1 like
      3. Emily G‏Verified account @EmilyGorcenski Jan 5
        Replying to @jwildeboer

        Yes and until those patches are deployed it's fair to say that people with high risk profiles should be super, super wary.

        1 reply 1 retweet 2 likes
      4. Jan  🇪🇺 Wildeboer (transnational citizen)‏ @jwildeboer Jan 5
        Replying to @EmilyGorcenski

        Yes. And people with high-risk profiles should update, update, update. Apple silently fixed one attack vector in December. The big 3 clouds (Amazon, Google, Azure) also claim fixes are in place. The unmaintained, outdated boxes are the real problem.

        1 reply 1 retweet 1 like
      5. Emily G‏Verified account @EmilyGorcenski Jan 5
        Replying to @jwildeboer

        Ah yes, precisely the kind of devices that activists have to often work with.

        1 reply 1 retweet 2 likes
      6. Jan  🇪🇺 Wildeboer (transnational citizen)‏ @jwildeboer Jan 5
        Replying to @EmilyGorcenski

        Yep. And they possibly are still wide open to heartbleed, shell shock, stagefright etc. We really must change that. Bugs will always come at surprising moments.

        1 reply 0 retweets 2 likes
      7. (((webhat)))‏ @webhat Jan 5
        Replying to @jwildeboer @EmilyGorcenski

        I was just thinking, on the way home, that it would be handy to have a tool that verified your susceptibility to all these bugs.

        1 reply 0 retweets 1 like
      8. Jan  🇪🇺 Wildeboer (transnational citizen)‏ @jwildeboer Jan 6
        Replying to @webhat @EmilyGorcenski

        Could you trust such a thing?

        1 reply 0 retweets 1 like
      9. (((webhat)))‏ @webhat Jan 6
        Replying to @jwildeboer @EmilyGorcenski

        I would trust it, if it was FOSS certainly. Would RedHat sponsor such a project?

        0 replies 0 retweets 0 likes
      10. End of conversation
      1. New conversation
      2.  🖥️ 🏳️‍🌈unsafe fn bot()  ➡️ impl Geysers‏ @KardOnIce Jan 4
        Replying to @EmilyGorcenski

        Just update, patch, and preferably block Javascript from sources you don't trust until mitigations are in place (ScriptSafe, NoScript), and don't panic.

        1 reply 1 retweet 12 likes
      3. ☭unite☭‏ @communistony Jan 4
        Replying to @KardOnIce @EmilyGorcenski

        A little panic is warranted! The servers we connect to (and trust our information will be kept secure on!) are compromised.

        1 reply 0 retweets 1 like
      4.  🖥️ 🏳️‍🌈unsafe fn bot()  ➡️ impl Geysers‏ @KardOnIce Jan 4
        Replying to @communistony @EmilyGorcenski

        It's terrifying, but unless you actually are a tech user, the panic and the PR is going to be difficult to sort through. Most cloud services are already patched (Azure, AWS, Google Cloud), and Meltdown patches have been/are being deployed.

        1 reply 0 retweets 4 likes
      5.  🖥️ 🏳️‍🌈unsafe fn bot()  ➡️ impl Geysers‏ @KardOnIce Jan 4
        Replying to @KardOnIce @EmilyGorcenski

        It is terrifying, but telling people it's the end of the world as we know it isn't going to do anything to help. Telling them to update their computer, and maybe block JS will.

        2 replies 1 retweet 4 likes
      6. Emily G‏Verified account @EmilyGorcenski Jan 4
        Replying to @KardOnIce

        I didn't say it was the end of the world. I said computers are fucked which is true until patches are widespread, which they are not yet, nor does any user have control over most of the devices that affect them.

        1 reply 0 retweets 4 likes
      7.  🖥️ 🏳️‍🌈unsafe fn bot()  ➡️ impl Geysers‏ @KardOnIce Jan 4
        Replying to @EmilyGorcenski

        I wasn't blaming you, and patches for most devices are becoming widespread (Windows deployed, macOS deployed, Fedora deployed, I dunno about Ubuntu/Arch/etc.). But most devices that don't receive updates will be fucked, permanently. And that's been a long-tome coming.

        1 reply 0 retweets 0 likes
      8.  🖥️ 🏳️‍🌈unsafe fn bot()  ➡️ impl Geysers‏ @KardOnIce Jan 4
        Replying to @KardOnIce @EmilyGorcenski

        *time. Although tome feels weirdly appropriate here...

        0 replies 0 retweets 0 likes
      9. End of conversation

    Loading seems to be taking a while.

    Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

      Promoted Tweet

      false

      • © 2018 Twitter
      • About
      • Help Center
      • Terms
      • Privacy policy
      • Cookies
      • Ads info