Alex Tereshkin

Director of Offensive Security @NVIDIA, architecting @RISC_V, @LKRG_org Founder, @BlackHatEvents & @Defcon Speaker, #Phrack author, @PwnieAwards nominee

Ulf Frisk

@UlfFrisk

AlexTereshkin retweeted

12 months ago

Together with @AlexTereshkin we managed to summarize NVIDIA Offensive Security Research (OSR) work on breaking BMC (reference to our DefCon talk https://t.co/4VBhcLhcUa). This blog post also includes a link to the full paper.

0

28

13

16

6K

AlexTereshkin retweeted

Nikolaj Schlej @NikolajSchlej

about 1 year ago

I'm delighted to share that our talk "How to Secure Unique Ecosystem Shipping 1 Billion+ Cores?" has been accepted to @BlackHatEvents #BHUSA 2025! How to create a secure unique ecosystem from scratch? What's Separation Kernel? How and why to modify RISC-V? come to our talk! :)

2

41

11

4

7K

AlexTereshkin retweeted

Tavis Ormandy

@taviso

about 1 year ago

You can now jailbreak your AMD CPU! 🔥We've just released a full microcode toolchain, with source code and tutorials. https://t.co/4NYerRuFo1

39

2K

522

833

177K

AlexTereshkin retweeted

over 1 year ago

Found a nice little SecureBoot bypass in a sizable bunch of UEFI firmwares, will share the details when able. Meanwhile, this is the SHA2-256 of the PoC tool to trigger it: 530584749f90d187ac20f77c6d4bb2e09ec1c852090962dfab01c4274a8a6d2d

1

36

10

16

16K

AlexTereshkin retweeted

droogie @droogie1xp

over 1 year ago

New blog post: Tales from the Call-Gate: An SMM Supervisor Vulnerability https://t.co/qFsxkXrwZC @kiqueNissim

1

70

24

27

8K

over 1 year ago

Nice writeup! Thanks guys.

BINARLY🔬 @binarly_io

over 1 year ago

🚨New! "CVE-2024-36435 Deep-Dive: The Year’s Most Critical BMC Security Flaw." 🔥Classic buffer overflow vulnerabilities resurface in BMCs, remotely opening the gates from the castle. 🏆Kudos to @AlexTereshkin for the initial discovery and disclosure! https://t.co/lVQBjboiwf

1

94

37

35

59K

0

10

2

1

2K

almost 2 years ago

Thanks, Xeno. Those were fun times indeed. Much respect to LegbaCore research! #ResearchRespect

Xeno Kovah @XenoKovah

almost 2 years ago

I'm trying to start a positive security trend of #ResearchRespect wherein we give shoutouts to researchers whose work we really respect and describe why. I'll go first (in no particular order) with "Attacking Intel BIOS" by Rafal Wojtczuk and @AlexTereshkin at BlackHat 2009

2

57

6

8

6K

0

6

0

434

over 2 years ago

@matrosov @binarly_io Brings back memories indeed! Congrats!

1

2

0

263

AlexTereshkin retweeted

Alex Matrosov

@matrosov

over 2 years ago

#LogoFAIL abstract is online! Embargo ends on Dec 6th. LogoFAIL impacting all major IBVs reverence code: AMI, Insyde, and Phoenix. Also, this attack is not silicon-specific but UEFI-specific🔥 and impacts ARM and x86. Kudos to @Binarly_io REsearch team! https://t.co/igcLHRGvZ8

matrosov's tweet photo. #LogoFAIL abstract is online! Embargo ends on Dec 6th. LogoFAIL impacting all major IBVs reverence code: AMI, Insyde, and Phoenix. Also, this attack is not silicon-specific but UEFI-specific🔥 and impacts ARM and x86.

Kudos to @Binarly_io REsearch team!

https://t.co/igcLHRGvZ8 https://t.co/EGhqTc9duo

5

82

35

6

19K

AlexTereshkin retweeted

Alex Matrosov

@matrosov

over 2 years ago

🔬OSR Team keeps rocking! @AlexTereshkin and @Adam_pi3 keep digging into BMC and FW rabbit hole. 🔥The main caveat is that most of those discoveries are related to IBVs reference code and impact the entire industry. ⛓️One vendor fix != Industry ⛓️Supply Chain Security is hard!

0

18

8

1

6K

almost 3 years ago

@DrJason_C @Adam_pi3 https://t.co/qDA737omcP

0

13

almost 3 years ago

Check out the abstract of our upcoming DC talk :) CC: @Adam_pi3 https://t.co/KbUlB0RbsL

1

9

1

0

10K

almost 3 years ago

@DrJason_C @Adam_pi3 Here you go https://t.co/kUOlkuYeEL

1

0

19

almost 3 years ago

@Grazfather @Adam_pi3 @defcon @mbazaliy @igoooo Thanks! The slidedeck: https://t.co/kUOlkuYeEL Demo is here: https://t.co/qDA737omcP

0

1

0

17

AlexTereshkin retweeted

almost 3 years ago

What is BMC? Should we care about BMC's security? How easy is it to hack it? You can find all the answers during our talk (CC @AlexTereshkin) at @defcon at 3:30pm on Saturday ;-) Join us! https://t.co/AHL2hOTMQg CC: @mbazaliy, @igoooo, NVDA RISC-V FW dude #DEFCON31 #Defcon

Adam_pi3's tweet photo. What is BMC? Should we care about BMC's security? How easy is it to hack it?

You can find all the answers during our talk (CC @AlexTereshkin) at @defcon at 3:30pm on Saturday ;-) Join us!

https://t.co/AHL2hOTMQg

CC: @mbazaliy, @igoooo, NVDA RISC-V FW dude

#DEFCON31 #Defcon https://t.co/NQKqL9sZ8s

3

36

5

2

7K

almost 3 years ago

We enjoyed doing this research, super fun stuff. See you all in Vegas!