Haifei Li

@HaifeiLi

For contact in the security community. NOTE: All the tweets are totally my personal opinions, not about any of my current employer stuff.

Vancouver, Canada
justhaifei1.blogspot.com
Joined April 2010
296 Photos and videos Photos and videos

Tweets

You blocked @HaifeiLi

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @HaifeiLi

  1. Pinned Tweet
    Sep 5

    Blog post: Re-enjoying the ActiveX (and others) Fun in Chinese Customized Browsers .

    1 reply 17 retweets 29 likes
    Show this thread
    Show this thread
  2. 13 hours ago

    So I just got this -> Fresh installed Windows 10 OS, full updated. It's not cool, . If I want to install third party software I think I will be able to do it myself. Thanks.

    2 replies 7 likes
  3. Retweeted
    Dec 21

    Intel Security Center of Excellence Now Hiring: Security Researchers

    3 replies 18 retweets 31 likes
  4. Dec 21

    Interesting.. . I just couldn't believe Microsoft hasn't yet fixed this *obvious* a weakness. Highlighted in 2014 , demonstrated it could be used to attack real-world users .

    We have recently found samples in the wild using a new method involving CVE-11882 that effectively makes it a dropper. Apologies if someone has already put this out but we haven't seen it and believe it is important.
    Show this thread
    1 reply 14 retweets 23 likes
  5. Retweeted
    Dec 21
    Replying to

    Hi. This is a feature of Packager.dll. See cc

    3 replies 4 retweets 11 likes
  6. Retweeted
    Dec 20

    Hey folks, REALLY doesn't want you to read this article from - so much so they're filing defamation charges to prevent similar articles in the future. Respect their wishes, please don't click or RT.

    44 replies 1,316 retweets 999 likes
    Show this thread
    Show this thread
  7. Dec 20

    Hmmm, I never got that, there must be some “secrets” in the “MS delivery process” left to researchers to figure out.

    Replying to @MalwareJake @keepersecurity @dangoodin001
    Oh wow, would you look at that... Installed by default on my Windows 10 VM.... Yoink, removed.
    2 replies 1 retweet
  8. Retweeted
    Dec 20

    I have *never* used DRM in our ebooks and never will, as a matter of principle. Please respect our hard work and that of our authors and do not share our ebooks (unless, of course, they're under a free license).

    26 replies 202 retweets 720 likes
  9. Retweeted
    Dec 20

    When you ship security software, I think you have a special duty to go the extra mile and do whatever it takes to get it right. Sometimes, we all fall short - but getting vindictive over minutiae details of the resulting press coverage doesn't strike me as a wise move.

    6 replies 39 retweets 109 likes
  10. Retweeted
    Dec 19

    Our VP of Electronic Mail has been busy acting as our human spam shield for the last few weeks. We'll check soon.

    sent you guys an email. not sure how often you check..so fyi.
    1 reply 1 retweet 12 likes
  11. Retweeted
    Dec 19

    Simple type confusion bug in an Intel GPU COM service which is accessible from Edge LPAC + Chrome GPU. Shows how a type confused SAFEARRAY leads to arbitrary code execution.

    1 reply 135 retweets 179 likes
  12. Dec 18

    Another view from this research: jscript.dll is the new flash.ocx, kill it everywhere.

    Project Zero blog: "aPAColypse now: Exploiting Windows 10 in a Local Network with WPAD/PAC and JScript" by , , and -
    9 retweets 23 likes
  13. Retweeted
    Dec 18

    It's out! New Windows remote (sort of) blog post with an exploit writeup, brought to you together with , and . Happy holidays! :-)

    Project Zero blog: "aPAColypse now: Exploiting Windows 10 in a Local Network with WPAD/PAC and JScript" by , , and -
    1 reply 107 retweets 156 likes
  14. Dec 18

    Wow it’s finally arriving. Awesome book & 🎄 gift, go click & buy.

    My book's finally here, just in time for Xmas. Thanks to and for all their time and effort as well as my friend for doing the forward. Hope anyone who's bought it are seeing final copies arriving. And it's a dog on the cover BTW 🙂
    1 retweet 1 like
  15. Retweeted
    Dec 18

    My book's finally here, just in time for Xmas. Thanks to and for all their time and effort as well as my friend for doing the forward. Hope anyone who's bought it are seeing final copies arriving. And it's a dog on the cover BTW 🙂

    64 replies 263 retweets 1,023 likes
  16. Dec 17

    The only way I ever learned to develop Windows UI is Delphi I learned in University classes. /Sign

  17. Dec 17

    Dear Twitter, what’s the easy way if I want to write an UI for a Windows tool? .NET is my current consideration but you know it’s too hard to me.:P

    5 replies 2 likes
  18. Dec 15

    Just another normal research day. In order to do A, I need to do B. In order to do B, I need to do C. In order to do C, I need to do D. In order to do D, I need to do E. In order to do E, I need to do F. Now I'm in F, that's looking for ways get the Win7 updated.

    2 replies 10 likes
  19. Dec 15

    Dear Twitter, what is the patch(es) I need to manually install first since the Windows Update on Windows 7 is checking forever?

    2 replies 1 like
  20. Retweeted
    Dec 15
    Replying to

    I guess it's this ContentDeliveryManager service, but I don't know how it works. I should probably look into it.

    1 retweet 3 likes
  21. Retweeted
    Dec 15
    Replying to

    I guess there's a "secret" "auto-install" way for Win10 Apps, I noted that one of my Win10 box didn't have the Facebook app installed days ago, but now it has.

    3 replies 1 retweet

@HaifeiLi hasn't Tweeted yet.

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

    You may also like

    ·