|
@
ShaneHuntley
Sunnyvale, CA
|
|
Google's Threat Analysis Group. Tweets are my own
|
|
|
700
Tweetovi
|
509
Pratim
|
5.459
Osobe koje vas prate
|
| Tweetovi |
|
Shane Huntley
@ShaneHuntley
|
28. sij |
|
Don’t forget the Security as Risk Management / Compliance people. I find those the most alien to my way of thinking.
|
||
|
|
||
|
Shane Huntley
@ShaneHuntley
|
24. sij |
|
Most overrated security topic?
|
||
|
|
||
| Shane Huntley proslijedio/la je tweet | ||
|
thaddeus e. grugq
@thegrugq
|
23. sij |
|
The Bezos forensic report is not very good. The forensic analysis should be done by @citizenlab who at least have the relevant experience.
The MP4 file should contain the exploit (if it is CVE-2019-11931). The exploit trigger should be visible with ffmpeg processors.wiki.ti.com/index.php/Extr…
|
||
|
|
||
|
Shane Huntley
@ShaneHuntley
|
20. sij |
|
Thanks for flagging. We (Google's Threat Analysis Group) has investigated and taken action on the account.
|
||
|
|
||
|
Shane Huntley
@ShaneHuntley
|
18. sij |
|
"Microsoft is aware of limited targeted attacks."
Independent discovery by:
Clément Lecigne (@_clem1) of Google’s Threat Analysis Group
Ella Yu from Qihoo 360
|
||
|
|
||
| Shane Huntley proslijedio/la je tweet | ||
|
Thomas Rid
@RidT
|
14. sij |
|
A reported hacking attempt against "Burisma Holdings and some of its subsidiaries and partners" is getting a lot of attention right now, *allegedly* by GRU. Here's the underlying report in question: cdn.area1security.com/reports/Area-1… < 🚨Caution advised, based on what we currently know
|
||
|
|
||
|
Shane Huntley
@ShaneHuntley
|
14. sij |
|
I predict in 2020, one of the primary sources of disinformation will be exaggerated research jumping to conclusions by security companies & researchers trying to make a name for themselves.
|
||
|
|
||
| Shane Huntley proslijedio/la je tweet | ||
|
Tim Willis
@itswillis
|
7. sij |
|
At Google Project Zero, the team spends a *lot* of time discussing and evaluating vulnerability disclosure policies and their consequences. It's a complex and controversial topic!
Here's P0's policy changes for 2020 (with our rationale for the changes):
googleprojectzero.blogspot.com/2020/01/policy…
|
||
|
|
||
|
Shane Huntley
@ShaneHuntley
|
28. pro |
|
Melissa, We've investigated and taken action against the account. Thanks for reporting.
|
||
|
|
||
|
Shane Huntley
@ShaneHuntley
|
20. pro |
|
That message indicates a site was flagged for phishing via Safe Browsing. See: support.google.com/chrome/answer/…
Not flagged because of http.
|
||
|
|
||
| Shane Huntley proslijedio/la je tweet | ||
|
Alex Stamos
@alexstamos
|
20. pro |
|
This has been an incredibly busy day for our team at the Stanford Internet Observatory...
Our take on US-focused FB disinfo:
twitter.com/noUpside/statu…
Saudi Twitter takedown:
twitter.com/noUpside/statu…
Taiwan disinfo update:
twitter.com/alexstamos/sta…
...and it's not even noon!
|
||
|
|
||
| Shane Huntley proslijedio/la je tweet | ||
|
Thomas Rid
@RidT
|
18. pro |
|
Pro-tip: if you're tempted to write "cyberwar something something" — just edit out the "cyber" in your draft, and try "war something something." If it reads like nonsense, it probably was nonsense.
Same for "cyberweapon."
Also, it's almost 2020.
|
||
|
|
||
| Shane Huntley proslijedio/la je tweet | ||
|
Nat Torkington
@gnat
|
14. pro |
|
No, Mum - different socials are totally different.
Facebook: my mentally-ill family members share disinformation and outrage.
Twitter: people in my industry share disinformation and outrage.
Instagram: everyone shares disinformation about their exciting happy lives. As photos.
|
||
|
|
||
|
Shane Huntley
@ShaneHuntley
|
16. pro |
|
Botox is also used to treat serious migraines...
|
||
|
|
||
| Shane Huntley proslijedio/la je tweet | ||
|
p mavrommatis
@mavrommatis
|
11. pro |
|
Thanks to everyone at Google who helped deliver these improvements. Just a snapshot of our work to protect users' online accounts from phishing and hijacking... twitter.com/sundarpichai/s…
|
||
|
|
||
| Shane Huntley proslijedio/la je tweet | ||
|
thaddeus e. grugq
@thegrugq
|
10. pro |
|
Shit, finally something security related Snowden is qualified for! twitter.com/RGB_Lights/sta…
|
||
|
|
||
| Shane Huntley proslijedio/la je tweet | ||
|
Stephan Somogyi
@thinkpanzer
|
4. pro |
|
I'm hiring Android Platform Security Product Managers. Plural.
I'm especially interested in candidates with a wide range of backgrounds.
1/8
|
||
|
|
||
|
Shane Huntley
@ShaneHuntley
|
29. stu |
|
Nice piece especially: “When you explain to the world why you are the hero of your story, take a moment to reflect on alternative narratives, and make an effort to recognize that the story is probably not that simple”
Widely applicable advice here.
|
||
|
|
||
|
Shane Huntley
@ShaneHuntley
|
28. stu |
|
What’s most rude to me is when someone assumes that I will meet with someone I don’t know for an agendaless meeting because “I want to hear more about your work” or similar.
|
||
|
|
||
| Shane Huntley proslijedio/la je tweet | ||
|
Benjamin Strick
@BenDoBrown
|
27. stu |
|
Google’s Threat Analysis Group just referred to our @bellingcat piece Investigating Information Operations in West Papua and removed a Google Ads account and 28 @YouTube channels. Happy to see platforms take the work of armchair analysts and act on it w/ @elisethoma5 ✊👨💻👩💻 twitter.com/ShaneHuntley/s…
|
||
|
|
||