Twitter now uses SameSite cookies! https://blog.twitter.com/engineering/en_us/topics/insights/2018/twitter_silhouette.html …
My 2016 @FronteersConf talk explains what kind of attacks they prevent by showcasing @tomvangoethem’s research: https://dev.opera.com/blog/timing-attacks/ …
-
Show this thread
-
This “new” Silhouette vulnerability is quite literally section 4.3 Twitter: Protected Accounts from
@tomvangoethem’s 2015 paper: https://tom.vg/papers/timing-attacks_ccs2015.pdf …. There was even a Twitter-specific demo on https://labs.tom.vg/browser-based-timing-attacks/ …. plz stop ripping off other people’s work kthxbai2 replies 8 retweets 21 likesShow this thread
4:02 AM - 19 Sep 2018
0 replies
3 retweets
16 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
JavaScript, HTML, CSS, HTTP, performance, security, Bash, Unicode, i18n, macOS.