Attention post-docs! My research group (DistriNet at KU Leuven) is hiring an Assistant Professor 🎓 in Distributed Systems on our main science & engineering campus in Leuven, Belgium 🇧🇪kuleuven.be/personeel/jobs… #academic #job #distributed #software #systems

Excited to announce the CfP for #EuroSec2024 — please submit your finest ideas! Deadline: February 14, 2024. #EuroSecWorkshop #Eurosys2024 secopera.eu/eurosec-2024/

Great coverage of Apple’s fake compliance with Europe’s DMA law. theplatformlaw.blog/2024/01/26/whe…

Attention researchers: The deadline for #EuroSec2024 submissions is approaching fast! Gather your research papers and make sure you're ready to submit! #EuroSecWorkshop #Eurosys2024 eurosec24.hotcrp.com secopera.eu/eurosec-2024/

Woke up this morning and, about ten minutes in, got a paper acceptance notification. Excited to talk about it, but will have to wait until the next DL is over. In utmost brevity: We're using DRAM Rowhammer PUFs with software diversity to prevent reverse engineering. 🎉

My first PhD student, Karel Dhondt , has successfully defended his PhD! Congratulations Karel!

📣Official statement: the new EU chat controls proposal for mass scanning is the same old surveillance with new branding. Whether you call it a backdoor, a front door, or “upload moderation” it undermines encryption & creates significant vulnerabilities signal.org/blog/pdfs/uplo…

Meredith Whittaker We still have one day to stop this #ChatControl mass surveillance madness, especially if you're from IT, FI, CZ, SE, SV, EST, GR, PT. Act NOW: patrick-breyer.de/en/council-to-…

In our latest USENIX WOOT Conference on Offensive Technologies paper, Stijn Volckaert and I demonstrate a fundamental weakness of store-only bounds checkers: invalidly-loaded pointers (through unchecked reads) give the attacker a near-arbitrary write primitive! paper: adriaanjacobs.github.io/files/woot24no…

Did you think to be safe with store-only bounds checking? Definitely something to reconsider after reading the paper “Not Quite Write: On the Effectiveness of Store-Only Bounds Checking” by Adriaan Jacobs #woot24

In addition to doing top-notch research, Adriaan Jacobs also makes quality memes

Our paper has been accepted for publication at ACSAC. Congratulations to André who led this work and my other co-authors Michael Franz and Stijn Volckaert. DistriNet UC Irvine TU Delft See you in Hawaii!!!

Please share this far and wide. As far and wide as you can. NIST Password Guidelines for 2024 are in the process of being updated. This is a HUGE pet-peeve of mine (when vendors in particular are still operating like its 2017 and keep changing passwords every 60 days, STOP DOING

Great chatting with evand about bounds checking and how to do it (im)properly, cfr. our recent USENIX WOOT Conference on Offensive Technologies paper! The Rochefort was a nice touch :)

We mogen verdorie als land trots zijn op topexperten zoals Bart Preneel (en COSIC) en de vele andere Europese stemmen die de draak van #ChatControl hebben tegengehouden. Maar je ziet: de nieuwe directeur van Child Focus & BFF Annelies proberen het toch gewoon opnieuw.

I'm in this picture and I like it 😁

After an embargo of 8 months, we are glad to finally share our USENIX Security '25 paper! We found more than 4 MILLION vulnerable tunneling servers by scanning the Internet. These vulnerable servers can be abused as proxies to launch DDoS attacks and access internal networks.

Happy to share that both our EuroSec Workshop papers got accepted! Congrats to Jonas and Anton for producing such great research so early in their PhD. See you in Rotterdam! Also for EuroSys 2025 and ASPLOS after :) 📜: adriaanjacobs.github.io/files/eurosec2… 📜: adriaanjacobs.github.io/files/eurosec2…

Happy to receive the EuroSec Workshop'25 Best Paper Award for our paper "CUDA, Woulda, Shoulda: Returning Exploits in a SASS-y World" 🎉 Great recognition for Jonas Roels' hard work! Check the 📜 here: adriaanjacobs.github.io/files/eurosec2…

The release preview for the updated Unreal Tournament 2004 is out now!