Tweets

You blocked @liblor

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @liblor

  1. Retweeted
    May 28

    On the way to $100k in less than 24 hours. Thank you and please RT!

    Undo
  2. Retweeted
    May 28

    Am I the first person to pop a shell in notepad? 🤣 ....believe it or not, It's a real bug! 🐞

    Undo
  3. Retweeted
    May 28

    CVE-2018-15664: docker (all versions) is vulnerable to a symlink-race attack

    Undo
  4. Retweeted
    May 22

    Another great paper from Samsung AI lab! et al. animate heads using only few shots of target person (or even 1 shot). Keypoints, adaptive instance norms and GANs, no 3D face modelling at all. ▶️ 📝

    Undo
  5. Retweeted
    May 19

    Reuters reports that Google is pulling Huawei’s Android license. That’s a huge development. Will mean Huawei loses Android updates immediately, and no more Google Play Store access. Wow

    Show this thread
    Undo
  6. Retweeted
    May 16

    When a company doesn't have a responsible disclosure Email/page....I have to choose an unexpected communication channel... :/ Please use security.txt

    Show this thread
    Undo
  7. Retweeted
    May 13

    Google ProjectZero last yr: “we spent a lot of time reviewing [WhatsApp] call signalling hoping to find a remote interaction-less vuln. No such bugs...found. We’re sharing our work [to save] other researchers the time...Or maybe it will give others ideas for vulns we didn’t find”

    Undo
  8. Retweeted

    This is awesome. Google has published their internal spreadsheet where they track 0days exploited in the wild.

    Show this thread
    Undo
  9. Retweeted
    May 15

    The need to have a 0day to analyze your own phone is problematic. As a white hat, you want to do responsible disclosure, but by doing that you'll not be able to perform full device analysis. It gets even more challenging if you know that this vulnerability is actively exploited.

    Show this thread
    Undo
  10. Retweeted
    May 15

    President Trump declares a national emergency to protect US computer networks from "foreign adversaries"

    Undo
  11. Retweeted
    May 14

    Chinese phone cradle for boosting your phone's daily step count. Some insurance companies in China allow people who consistently reach a certain daily step count to get discounted health insurance premiums.

    Undo
  12. Retweeted
    May 10

    If you know any German speaking infosec / cybersecurity people who are looking for a DFIR/infosec job in Switzerland, please refer them to me. Our team has an open position (Security Analyst).

    Undo
  13. Retweeted
    May 13

    And here's when public revelations about Fxmsp hacker group started. btw, they spent 6 months to get persistent access to the networks of AV companies.

    Show this thread
    Undo
  14. Retweeted
    May 13

    WhatsApp discovered in early May that attackers were using zero day exploit developed by NSO Group that installed malware on a user's iPhone or Android phone simply by calling them. Target did not have to answer phone to be infected, and calls often disappeared from call logs

    Show this thread
    Undo
  15. Retweeted
    May 11
    Undo
  16. Retweeted
    May 7

    THREAD: French company has created lots of fake domains pretending to be some very popular free software and is using these sites to distribute bundled adware and malware. /1

    Show this thread
    Undo
  17. Retweeted
    May 8

    New: at an ISO meeting, organization that votes on cryptographic standards, members debated a flaw in a particular algorithm Russia wants approved. Russian delegation said the issue was a coincidence. Multiple ISO members aren't convinced; want explanation

    Show this thread
    Undo
  18. Retweeted
    May 8

    I used to feel that tech companies competing to market “privacy” could only result in a win for consumers. Now I’m starting to wonder if it serves the same purpose as carmakers adding an “eco” mode to your SUV.

    Show this thread
    Undo
  19. Retweeted
    May 7

    Just heard about a customer service exploit where the person called up multiple times and corrected a single character "misspelling" until the entire account was in his name.

    Undo
  20. Retweeted
    May 5

    This bug can not only leak info but also lead to vm escape. I used it in tianfu cup 2018.

    Undo

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

    You may also like

    ·