Arkadiy Tetelman

@arkadiyt

Application Security . Previously .

San Francisco, CA
arkadiyt.com
View broadcasts Watch LIVE
Joined March 2014
130 Photos and videos Photos and videos

Tweets

You blocked @arkadiyt

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @arkadiyt

  1. Retweeted
    Aug 23

    People speak about the "security poverty line", but the harsh truth is that there is an "engineering poverty line" in tech, and many large, world-famous companies fall below it. Good security is normally a result of healthy IT engineering culture & competence; reality is that ...

    27 replies 364 retweets 838 likes
    Show this thread
    Show this thread
    Undo
  2. Retweeted
    Aug 14

    [Thread] I spent 6 of my 15 years in breaking into systems and companies and the other 8 building security programs to defend companies/products. Breaking in was always the easier part. Defense at scale is hard.

    1 reply 17 retweets 53 likes
    Show this thread
    Show this thread
    Undo
  3. Retweeted
    Aug 10

    It’s here! 🎉🎉🎉 RFC 8446: TLS 1.3 Also, I wrote a blog post about the topic:

    19 replies 1,039 retweets 1,612 likes
    Show this thread
    Show this thread
    Undo
  4. Aug 10

    This has got to be one of the most technically impressive talks I’ve ever seen, and presented beautifully

    GOD MODE UNLOCKED: hardware backdoors in some x86 CPUs White paper coming tomorrow.
    6 likes
    Undo
  5. Retweeted
    Aug 9

    Blog post: Practical Web Cache Poisoning: Redefining 'Unexploitable'

    1 reply 99 retweets 187 likes
    Undo
  6. Aug 7

    This was my favorite talk from day 1 - thanks for the super informative talk about the various legal frameworks used for wiretapping

    About to talk about wiretaps in Common Ground !!
    Show this thread
    4 likes
    Undo
  7. Retweeted
    Aug 7

    How I gained commit access to the Homebrew project in 30 minutes:

    15 replies 528 retweets 689 likes
    Undo
  8. Aug 6

    All settled in and ready for BSides/Defcon - looking forward to meeting lots of you in person!

    5 likes
    Undo
  9. Aug 4

    My superpower is killing house plants

    1 reply 5 likes
    Undo
  10. Retweeted
    Aug 2

    Blog post on the exciting world of reporting vulnerabilities

    10 replies 207 retweets 396 likes
    Undo
  11. Retweeted
    Aug 1

    You could have invented that bluetooth attack

    2 replies 43 retweets 68 likes
    Undo
  12. Retweeted
    Jul 31

    Bulletproof TLS Newsletter is out! Chrome now says “not secure” for HTTP web pages and other July news -

    15 retweets 30 likes
    Undo
  13. Jul 27

    Apparently if you attach an AWS Web Application Firewall to an ALB it will *randomly make some of your requests error out with 500s* (it fails closed), and this is documented behavior. Absolutely insane. cc

    1 reply 3 likes
    Undo
  14. Retweeted
    Jul 26

    The Road to QUIC -

    9 replies 70 retweets 141 likes
    Undo
  15. Retweeted
    Jul 23

    How we used a "sprinting team" model to get a security review process that took 6 months to complete down to 1 month

    7 retweets 15 likes
    Undo
  16. Retweeted
    Jul 20

    Turns out that weird CSP noncing bug in Firefox found by () had some interesting security consequences...

    Blogged! - "Detect the Same-Origin Redirection with a bug in Firefox's CSP Implementation"
    Show this thread
    4 retweets 6 likes
    Undo
  17. Retweeted
    Jul 20

    Into the BORG - SSRF inside Google production network!

    4 replies 229 retweets 411 likes
    Undo
  18. Jul 9

    This whole incident response from Timehop is fantastic, kudos to them for putting user safety first and revoking all 21M oauth access tokens

    UPDATE -- we're back online. Please read this important security announcement:
    3 likes
    Undo
  19. Retweeted
    Jul 6

    How to drop 10 million packets per second -

    3 replies 57 retweets 83 likes
    Undo
  20. Retweeted
    May 2

    D2T2 - Defense-in-Depth Techniques for Modern Web Apps - & -

    4 replies 23 retweets 49 likes
    Show this thread
    Show this thread
    Undo

@arkadiyt hasn't Tweeted yet.

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

    You may also like

    ·