Twitter | Pretraživanje | |
MalwareTech 14. sij
Deleted the tweet about the crypto bug because there's conflicting info on its scope. Some people are tweeting at me saying it's viable for TLS interception, but MS Security Portal only mentions file signature spoofing. Going to go do some digging.
Prikaži podatke · Reply Retweet Označi sa "sviđa mi se"
Heather Adkins 14. sij
Odgovor korisniku/ci @MalwareTechBlog
From the portal advisory: "A successful exploit could also allow the attacker to conduct man-in-the-middle attacks and decrypt confidential information on user connections to the affected software."
Prikaz razgovora · Reply Retweet Označi sa "sviđa mi se"
Tavis Ormandy 14. sij
Odgovor korisniku/ci @argvee @MalwareTechBlog
It is weird that the official advisory is so focussed on code signing.
Prikaz razgovora · Reply Retweet Označi sa "sviđa mi se"
Dmitri Alperovitch
This is helpful:
10:51 - 14. sij 2020.
Reply Retweet Označi sa "sviđa mi se" More
Acebond 14. sij
Odgovor korisniku/ci @DAlperovitch @taviso i 2 ostali
The real question is, did the NSA get a bug bounty?
Prikaz razgovora · Reply Retweet Označi sa "sviđa mi se"
Karl Mueller byeShmoo! 14. sij
Odgovor korisniku/ci @DAlperovitch @taviso i 2 ostali
Hmmmmmm I wonder why the nsa know so much about ecc especially with respect to what primes and base to use 🤔
Prikaz razgovora · Reply Retweet Označi sa "sviđa mi se"