Juliano Rizzo

@julianor

Security, Cryptography, Cryptocurrency, Bloggcheiin

402F906F1E19A3BF4A137E5B2D48D3F7BF5E1193
Vrijeme pridruživanja: listopad 2008.

Tweetovi

Blokirali ste korisnika/cu @julianor

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @julianor

  1. prije 13 sati

    🙀 the best site of the internet 4.0 is down I don't want to load 10mb ofJS to see a number please fix

    Poništi
  2. prije 13 sati

    <300 lines of code. Simple CRUd (DNS like but the actual records not handled here) very important for the ecosystem (send money to names instead of hex strings) found a critical bug ~3 years after it was deployed. Yes, it was audited but blockchain is hard

    Poništi
  3. prije 16 sati

    Anxiety arises from not being able to see the whole picture (processes, open ports, those encrypted UDP packets.) If you feel anxious, but are not sure why, try deleting some apps.

    Poništi
  4. prije 16 sati

    delete something today, delete WhatsApp! 🤮 and start the week feeling free. Never discard anything without saying thank you and good-bye.

    Poništi
  5. proslijedio/la je Tweet
    prije 23 sata

    Performance artist generates virtual traffic jams in Google Maps by pulling a wagon full of smartphones

    Poništi
  6. 1. velj

    AFAIK the CTO of Ledger demonstrated it years ago:

    Prikaži ovu nit
    Poništi
  7. 1. velj

    Trezor (open, 1 chip) vs Ledger (2 chips, not 100% open) debate: Ledger design is stronger, not only against physical access. 1 CPU means 1 memory corruption bug (in C code!) is enough to get the seed. Malware can exploit it and the passphrase does not help.

    Prikaži ovu nit
    Poništi
  8. 1. velj

    😮 efficient disposable cloud browser "S2 Systems NVR technology intercepts the remote Chromium browser’s Skia draw commands ❶, tokenizes and compresses them, then encrypts and transmits them across the wire ❷ to any HTML5 compliant web browser"

    Poništi
  9. 31. sij

    +1 Ledger, -158.666 SGX, -2 Trezor

    Poništi
  10. proslijedio/la je Tweet
    31. sij

    1/2. Congrats for contributing to secure the ecosystem! Your attack is very close to the one we implemented a year ago As the attack is not fixable, we preferred not sharing the details to avoid exploitation on the field.

    Prikaži ovu nit
    Poništi
  11. 31. sij

    "We assume this attack might be similar to previously publicized Seed Extraction Attack by the Donjon Team. We are unable to confirm this with any certainty because the Donjon Team has not, to this day, shared the full details of the attack with us."

    Poništi
  12. proslijedio/la je Tweet
    31. sij

    🚨It took Kraken Security Labs just 15 minutes to hack both of ’s crypto hardware wallets. Here’s how we did it and what it means if you’re a user:

    Prikaži ovu nit
    Poništi
  13. proslijedio/la je Tweet
    31. sij
    Odgovor korisniku/ci

    most npm packages

    Poništi
  14. 31. sij

    True! a potential short term solution is HSM + attestation/endorsement has the capability but is not being used.

    Poništi
  15. 31. sij
    Poništi
  16. proslijedio/la je Tweet
    30. sij

    In my team at GitHub, we'd like to study examples of "nefarious commits" in open source, which introduce a bug on purpose. Can you point me at such commits? Could it have been detected by analysing the committer's behaviour as well as the code change itself?

    Poništi
  17. proslijedio/la je Tweet
    30. sij

    Does anyone remember any explicit (or highly suspected/suspicious) bugdoor attempts in OSS history besides the = vs == uid thing in the Linux kernel?

    Poništi
  18. proslijedio/la je Tweet
    30. sij

    Say hello to OpenSK: a fully open-source security key implementation -

    Poništi
  19. 30. sij

    delete facebook 🤮

    Poništi
  20. proslijedio/la je Tweet
    29. sij

    Today, we released Yubico PIV Tool 2.0. 🎉 If you are an enterprise or individual working with YubiKeys and PKI, check out our latest blog for new capabilities that may help you with programming and managing YubiKeys.

    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·