Mastodon would be easier to at least try out if there were a low friction option to import or even find folks I already follow on Twitter. Afaict, no such feature exists

A buddy who's interested in end-to-end encryption (E2EE) but hasn't done one of these projects in the very messy place which is the real world happened to ask me this morning about pitfalls which might not be obvious. So here's a partial list in the hopes that it's helpful. 🧵

LinkedIn really flies under the radar as the social media platform that’s absolutely the most unhinged

Scoop: InfraGard, a program run by the U.S. Federal Bureau of Investigation (FBI) to build cyber/physical threat info sharing partnerships w/ the private sector, this week saw its database of contact information on more than 80,000 members go up for sale. krebsonsecurity.com/2022/12/fbis-v…

We also just published new payout guidelines for different bug categories, ranging as high as $300K, making our program one of the highest-paying in the industry. about.fb.com/news/2022/12/m… (6/6)

Even my backup plan for Mastodon is blocked??

Hmm, interesting

I resigned from Meta, and my internal post got leaked to the press, resulting in some fragmented quotes. Here is the full thing: facebook.com/permalink.php?…

CircleCI Security Alert [4 Jan. 2023] We strongly recommend all CircleCI customers rotate secrets stored on our system. Read more: circleci.com/blog/january-4…

Sad to have had to miss this (my favorite con) at the last minute... But there are awesome people you should meet in my place if you're around. Say hi to Misha Davidov 🏳️‍⚧️ or meta (presenting Thursday) if you're around! #enigma2023

These fish committed credit card fraud while playing Pokémon. 💳🐟🐟🐟🐟

Yes. arxiv.org/abs/2211.03622

Wow, holy shit this is far away from anything else I’ve seen. Insane. Google basically solved AI music: google-research.github.io/seanet/musiclm…

#enigma2023 is a wrap! Awesome seeing everyone, thanks for the opportunity to talk about hard problems in hardware privacy and to all the amazing speakers for sharing your ideas. Thanks Enigma Conference for hosting a top notch event ❤️. usenix.org/conference/eni…

It is with profound sadness that we mourn the loss of our friend and mentor, [email protected]. Kelly had an indomitable spirit, and our world is a bit darker without her.

#Threads threads.net/@thenak

Time for an Arm-twist! CVE-2023-4039 Tom Hebb (Meta red team) and I discovered an 0day in GCC (for AArch64 targets) during my Arm exploitation training. It renders stack canaries against overflows of dynamically-sized variables useless. github.com/metaredteam/ex…

Looking forward to meeting some fellow Infosec leaders over the next couple days while GDC is going on in San Francisco. If you're there and would like to meet, let me know!