Twitter | Search | |
Tim Willis
Long time listener, infrequent tweeter. Currently Project Zero . Views are my own. Currently reading: "Brown Bear, Brown Bear, What Do You See?"
25
Tweets
119
Following
2,242
Followers
Tweets
Tim Willis retweeted
j00ru//vx May 6
Today I'm happy to release new research I've been working on for a while: 0-click RCE via MMS in all modern Samsung phones (released 2015+), due to numerous bugs in a little-known custom "Qmage" image codec supported by Skia on Samsung devices. Demo:
Reply Retweet Like
Tim Willis May 5
Replying to @spoofyroot
Thanks! I owe you an email! :)
Reply Retweet Like
Tim Willis May 4
Uncomfortably excited!
Reply Retweet Like
Tim Willis Apr 14
Replying to @itswillis
That said, attackers aren't taking a break and we're still working hard to protect end users. The writeup on this and the other in the wild 0-days found this year by Project Zero and Google's Threat Analysis Group (TAG) is underway. It's lengthy and might take a few months. (2/2)
Reply Retweet Like
Tim Willis Apr 14
We discovered CVE-2020-1027 being exploited in the wild and reported it on 23 March under a 7-day deadline (used only for actively exploited bugs). Microsoft asked for an extension due to current global circumstances and we agreed. Patch details at (1/2)
Reply Retweet Like
Tim Willis Jan 7
At Google Project Zero, the team spends a *lot* of time discussing and evaluating vulnerability disclosure policies and their consequences. It's a complex and controversial topic! Here's P0's policy changes for 2020 (with our rationale for the changes):
Reply Retweet Like
Tim Willis Nov 26
ex post rationalisation? 🍻
Reply Retweet Like
Tim Willis Nov 25
paging for a hot take.
Reply Retweet Like
Tim Willis Sep 2
Replying to @itswillis
... TAG *only* saw iOS exploitation on these sites when TAG found them back in Jan 2019 (and yes, they looked for everything else as well). That said, anyone out there with full chain 0day in-the-wild from Android / Windows, feel free to reach out and we'd love to take a look!
Reply Retweet Like
Tim Willis Sep 2
Contrary to some commentary, Project Zero's long form blogs are based on deep technical research into 0-days and novel exploitation, not a commentary on target populations or the wider threat space. Specifically though in this case (and as a one-off), I can tell you that...
Reply Retweet Like
Tim Willis Aug 31
Replying to @itswillis
3. The unglamorous but important work of code testing and review. Uncaught software development errors can have a huge impact on device security. Shout outs to all the testing/review/QA peeps out there - hopefully you can use these posts for more funding for your future work!
Reply Retweet Like
Tim Willis Aug 31
Replying to @itswillis
2. The high rate of vulnerability discovery collisions between our team and real world attackers. Pressuring vendors to patch quickly, as well as vendors working hard to encourage quick patch adoption, is stopping demonstrated end-user harm.
Reply Retweet Like
Tim Willis Aug 31
Having spent most of this week editing 184-page “blogbook”, I’d like to highlight three things so they don’t get missed: 1. 's JSC exploit piece () on patch gapping and n-day bugs being used as an easy way to score 0-day like capabilities
Reply Retweet Like
Tim Willis Aug 7
Replying to @taviso
I think someone else has your badge. It was an entertaining chat, but his PoC was ordinary at best.
Reply Retweet Like
Tim Willis Jul 18
Replying to @argvee @S9k and 3 others
Reply Retweet Like
Tim Willis Jul 17
Replying to @S9k @dcuthbert and 2 others
It was a banana cake, you monster. Frosting would be an abomination!
Reply Retweet Like
Tim Willis Jul 17
Deadline exceeded -- automatically derestricting No one wanted to be in the photo, so I hope that you can reconstruct who was present using reflections off the foil. I'll leave that as an exercise for the reader.
Reply Retweet Like
Tim Willis Jul 17
Issue 0xF00D: Celebratory cake results in DoS of Project Zero team (Zurich). The cake has baked and is subject to a 90-minute disclosure deadline. After 90 minutes elapse or the cake is consumed (whichever is earlier), a picture of the cake will become visible to the public.
Reply Retweet Like
Tim Willis Jul 16
of course I knew that today was 5 years and I've been preparing a cake for this occasion! *scrambles madly to find a recipe book and attempt to bake something* watch this space! 🎂
Reply Retweet Like
Tim Willis Jul 15
Replying to @parityzero
Reply Retweet Like