Skip to content
By using Twitter’s services you agree to our Cookies Use. We and our partners operate globally and use cookies, including for analytics, personalisation, and ads.
  • Home Home Home, current page.
  • About

Saved searches

  • Remove
  • In this conversation
    Verified accountProtected Tweets @
Suggested users
  • Verified accountProtected Tweets @
  • Verified accountProtected Tweets @
  • Language: English
    • Bahasa Indonesia
    • Bahasa Melayu
    • Català
    • Čeština
    • Dansk
    • Deutsch
    • English UK
    • Español
    • Filipino
    • Français
    • Hrvatski
    • Italiano
    • Magyar
    • Nederlands
    • Norsk
    • Polski
    • Português
    • Română
    • Slovenčina
    • Suomi
    • Svenska
    • Tiếng Việt
    • Türkçe
    • Ελληνικά
    • Български език
    • Русский
    • Српски
    • Українська мова
    • עִבְרִית
    • العربية
    • فارسی
    • मराठी
    • हिन्दी
    • বাংলা
    • ગુજરાતી
    • தமிழ்
    • ಕನ್ನಡ
    • ภาษาไทย
    • 한국어
    • 日本語
    • 简体中文
    • 繁體中文
  • Have an account? Log in
    Have an account?
    · Forgot password?
    New to Twitter?
    Sign up
ortegaalfredo's profile
Alfredo Ortega
Alfredo Ortega
Alfredo Ortega
@ortegaalfredo

Tweets

Alfredo Ortega

@ortegaalfredo

Software/Hardware security researcher - Cybergaucho

Buenos Aires
aortega.keybase.pub/pubkey-aortega…
Joined March 2009

Tweets

  • © 2018 Twitter
  • About
  • Help Center
  • Terms
  • Privacy policy
  • Cookies
  • Ads info
Dismiss
Previous
Next

Go to a person's profile

Saved searches

  • Remove
  • In this conversation
    Verified accountProtected Tweets @
Suggested users
  • Verified accountProtected Tweets @
  • Verified accountProtected Tweets @

Promote this Tweet

Block

  • Tweet with a location

    You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more

    Your lists

    Create a new list

    Under 100 characters, optional
    Privacy

    Copy link to Tweet

    Embed this Tweet

    Embed this Video

    Add this Tweet to your website by copying the code below. Learn more

    Add this video to your website by copying the code below. Learn more

    Hmm, there was a problem reaching the server.

    By embedding Twitter content in your website or app, you are agreeing to the Twitter Developer Agreement and Developer Policy.

    Preview

    Why you're seeing this ad

    Log in to Twitter

    · Forgot password?
    Don't have an account? Sign up »

    Sign up for Twitter

    Not on Twitter? Sign up, tune into the things you care about, and get updates as they happen.

    Sign up
    Have an account? Log in »

    Two-way (sending and receiving) short codes:

    Country Code For customers of
    United States 40404 (any)
    Canada 21212 (any)
    United Kingdom 86444 Vodafone, Orange, 3, O2
    Brazil 40404 Nextel, TIM
    Haiti 40404 Digicel, Voila
    Ireland 51210 Vodafone, O2
    India 53000 Bharti Airtel, Videocon, Reliance
    Indonesia 89887 AXIS, 3, Telkomsel, Indosat, XL Axiata
    Italy 4880804 Wind
    3424486444 Vodafone
    » See SMS short codes for other countries

    Confirmation

     

    Welcome home!

    This timeline is where you’ll spend most of your time, getting instant updates about what matters to you.

    Tweets not working for you?

    Hover over the profile pic and click the Following button to unfollow any account.

    Say a lot with a little

    When you see a Tweet you love, tap the heart — it lets the person who wrote it know you shared the love.

    Spread the word

    The fastest way to share someone else’s Tweet with your followers is with a Retweet. Tap the icon to send it instantly.

    Join the conversation

    Add your thoughts about any Tweet with a Reply. Find a topic you’re passionate about, and jump right in.

    Learn the latest

    Get instant insight into what people are talking about now.

    Get more of what you love

    Follow more accounts to get instant updates about topics you care about.

    Find what's happening

    See the latest conversations about any topic instantly.

    Never miss a Moment

    Catch up instantly on the best stories happening as they unfold.

    Alfredo Ortega‏ @ortegaalfredo May 11

    Remote zero-click JavaScript code execution on signal desktop message app. Thanks @HacKanCuBa and @julianorpic.twitter.com/YgT8akGfBI

    12:05 PM - 11 May 2018
    • 756 Retweets
    • 1,195 Likes
    • Félix Brezo Shikari Senpai TheLegendary Mathieu Bolard Santiago Manopella Anne Jan Brouwer Guz 'Kristi Begaj🇦🇱 Robert Muschong
    32 replies 756 retweets 1,195 likes
      1. Alfredo Ortega‏ @ortegaalfredo May 11

        cc @signalapp @moxie

        2 replies 1 retweet 25 likes
        Show this thread
        Thanks. Twitter will use this to make your timeline better. Undo
        Undo
      2. New conversation
      1. jsnar‏ @jsnar0 May 11
        Replying to @ortegaalfredo @HacKanCuBa @julianor

        Signal desktop app is based on the insecure Electron runtime. See my report here:https://github.com/signalapp/Signal-Desktop/issues/1635 …

        6 replies 51 retweets 139 likes
      2. Alfredo Ortega‏ @ortegaalfredo May 11
        Replying to @jsnar0 @HacKanCuBa @julianor

        I wish I could feel the sweet "I told you so, fuckers" sensation you are having right now.

        1 reply 0 retweets 91 likes
      3. Alex Russell‏ @slightlylate May 12
        Replying to @ortegaalfredo @jsnar0 and

        Electron: what could possibly go wrong with an out-of-date Chromium that disables sandboxing by default?

        1 reply 10 retweets 16 likes
      4. pip010‏ @ppetrovdotnet May 13
        Replying to @slightlylate @ortegaalfredo and

        wonder if RiotChat / http://matrix.org  web apps are affected too

        1 reply 0 retweets 0 likes
      5. Riot.im‏ @RiotChat May 13
        Replying to @ppetrovdotnet @slightlylate and

        as far as we know, this one is Signal specific.

        1 reply 0 retweets 1 like
      6. Ian Coldwater‏ @IanColdwater May 13
        Replying to @RiotChat @ppetrovdotnet and

        It is not.https://www.trustwave.com/Resources/SpiderLabs-Blog/CVE-2018-1000136---Electron-nodeIntegration-Bypass/ …

        2 replies 1 retweet 4 likes
      7. Riot.im‏ @RiotChat May 13
        Replying to @IanColdwater @ppetrovdotnet and

        as far as we know there are two issues here; an XSS vuln of some kind in Signal (the original post) and then the RCE in electron you linked. The XSS is Signal specific, and we’re not aware of a way to exploit the RCE via riot-web. That said, roll on proper native Matrix clients..

        1 reply 0 retweets 0 likes
      8. pip010‏ @ppetrovdotnet May 14
        Replying to @RiotChat @IanColdwater and

        Oh , yes, I was considering already a native Qt/cpp desktop client.

        0 replies 0 retweets 0 likes
        9. End of conversation
      3. New conversation
      1. mandatory/Matthew Bryant‏ @IAmMandatory May 11
        Replying to @ortegaalfredo @HacKanCuBa @julianor

        Wow, reproduced this. I can't believe this trivial of a mistake was made and not caught before deployment. The patch looks very sketchy too, I doubt it can't be bypassed. Nice work folks!

        1 reply 2 retweets 23 likes
      2.  🌦‏ @zemnmez May 11
        Replying to @IAmMandatory @ortegaalfredo and

        lmao, there is a post like this behind every rce i swearpic.twitter.com/HGRj4lm1XR

        2 replies 4 retweets 36 likes
      3. mandatory/Matthew Bryant‏ @IAmMandatory May 11
        Replying to @zemnmez @ortegaalfredo and

        It's so great, there must be an X's law for thispic.twitter.com/JEZ6Ub6UVL

        1 reply 3 retweets 33 likes
      4.  🌦‏ @zemnmez May 11
        Replying to @IAmMandatory @ortegaalfredo and

        behind every major vulnerability forewarned by basic threat modelling there is an engineer with a hill to die on

        0 replies 13 retweets 43 likes
        5. End of conversation
      4. New conversation
      1. 𝚐𝚘𝚗𝚣𝚊𝚕𝚘‏ @x61sh May 11
        Replying to @ortegaalfredo @HacKanCuBa @julianor

        que dice el popup? ubuntu? no se ve una mierda

        2 replies 0 retweets 1 like
      2. Alfredo Ortega‏ @ortegaalfredo May 11
        Replying to @x61sh @HacKanCuBa @julianor

        Ponelo en full screen, no se si OpenBSD lo soporta.

        1 reply 0 retweets 22 likes
      3. 𝚐𝚘𝚗𝚣𝚊𝚕𝚘‏ @x61sh May 11
        Replying to @ortegaalfredo @HacKanCuBa @julianor

        sos re malo.

        0 replies 0 retweets 4 likes
        4. End of conversation
      5. New conversation
      1. Great Snoopy‏ @GreatSnoopy77 May 11
        Replying to @ortegaalfredo @HacKanCuBa @julianor

        There are quite a few identically implemented chat clients. I wonder if this is also exploitable on those: whatsapp messengerfordesktop slack...

        1 reply 1 retweet 5 likes
      2. dr1ft/Gaia‏ @stardr1ft May 11
        Replying to @GreatSnoopy77 @ortegaalfredo and

        discord :^)

        1 reply 1 retweet 6 likes
      3. Gary S‏ @madhaha May 12
        Replying to @stardr1ft @GreatSnoopy77 and

        And Slack. VS Code might be hit as well?

        1 reply 1 retweet 3 likes
      4. dr1ft/Gaia‏ @stardr1ft May 12
        Replying to @madhaha @GreatSnoopy77 and

        i would guess this exploit is specific to signal but, it's a good example of why we shouldnt be using electron. for anything.

        1 reply 2 retweets 11 likes
      5. Great Snoopy‏ @GreatSnoopy77 May 12
        Replying to @stardr1ft @madhaha and

        Do we know that it is signal specific and not some content related bug that gets passed to electron no matter the actual transport?

        1 reply 0 retweets 1 like
      6. Ivan  💚 🧡 HacKan‏ @HacKanCuBa May 12
        Replying to @GreatSnoopy77 @stardr1ft and

        they checked other platforms and apps, we also thought this could be electron and not signal specific. But it is just signal

        1 reply 1 retweet 5 likes
      7. Great Snoopy‏ @GreatSnoopy77 May 12
        Replying to @HacKanCuBa @stardr1ft and

        This, at least is a good news. Until further discoveries. :)

        0 replies 1 retweet 1 like
        8. End of conversation

    Loading seems to be taking a while.

    Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

      Promoted Tweet

      false

      • © 2018 Twitter
      • About
      • Help Center
      • Terms
      • Privacy policy
      • Cookies
      • Ads info