Olivia
Online
Jérémy Matos
@SecuringApps
Pragmatic Product Security
Joined July 2015
434 Following
446 Followers
982 Posts
Pinned Tweet
My talk at #CYBSEC16 on abusing users of WhatsApp, Telegram and Signal with a Man In The Contacts attack: https://t.co/VcLEsK9LRk
This is the way:
"Observing such direct payoff from previous hardening work was even more rewarding than finding and fixing more bugs"
https://t.co/YgLsQDeeYe
Let's try something else with bug bounty programs before deciding to suspend them
https://t.co/2caBKtkGat
A paradigm change cannot be addressed by minor iterations, even with many of those:
"The traditional response is to add more scanning, more automation, more patching"
"You can't close that gap by reacting faster to something that's already too fast"
https://t.co/dViPb5OqXP
Who to follow
swisscyberstorm
@swisscyberstorm
Cyber Security Conference #SCS26 / "Shadow IT" / October 20, 2026 / Bern / Cyber Talent Competition / #ECSC2026
André Moulu
@andremoulu
Android security researcher and team leader at @Cellebrite, member of @ge0n0sis
Obviously tweets are my own.
Orange Cyberdefense Switzerland
@orangecyberch
Orange Cyberdefense is the expert cybersecurity business unit of
@orange. As the leading security provider, we strive to build a safer digital society.
One of the biggest impacts of AI that goes kind of unnoticed is that we’re about to see an explosion of poorly built applications.
Specifically, applications built completely by AI with no thought of security whatsoever.
🧵
My big takeaways from this discussion:
1. It’s largely that many applicants don’t have the skills to do the work
2. Few companies are looking to train anyone
3. Recruiting/HR is a big part of the problem because they are a non-expert and inefficient middleman to the process
4. Another big part of the problem is the entire process around hiring, interviews and how little time hiring managers have to do it right— assuming that even know what that is
So to simplify and exaggerate it—most applicants are under-skilled, and the entire ecosystem around hiring is wasteful and broken.
While brainstorming on how to best combine in my daily work genuine security/confidentiality with meaningful business impact, https://t.co/SPZu7654Ui was born.
More than excited by this mission to foster mutual and honest feedback, starting with the salary expectations use case.
Given Microsoft has pretty large security teams, and a newfound focus on security:
How did Recall pass security review - if it even did? Details coming out make it seem like while building this cool-sounding AI feature, there was no emphasis on common-sense security and privacy.
22 years have passed and making "security a top priority in practice" is still an unsolved problem:
https://t.co/O23Xey3gIR vs https://t.co/uy2J5jNCm6
Imagine a bank got robbed and now they are blaming the cleaning lady who allegedly forgot to close a window.
This is effectively IT security's reaction to ransomware incidents after somebody clicked on a link.
Also: We had a blast at #SCS23 yesterday! The Human Factor is key.
Black Alps 2023 is next week! We can't wait to gather the community and have a great time again!
If you don't already have your conference ticket, jump on board and get it!
https://t.co/fi5PtBrWqd
Interesting. Looks like a rebellion has started.
Are you looking forward to @gopherconuk?
We certainly are and so is @securingapps, one of our speakers for this year's event.
They'll be giving a talk on 'Go security pitfalls: 2 lessons from the battlefield at Grafana Labs'.
Grab your tickets here - https://t.co/mEnqbNqu9i
Hey folks!
We are happy to announce that #GreHack23 will take place on November 17th and 18th, in Grenoble.
Stay tuned, more information coming soon!
The Grafana Labs Bug Bounty Program is intended to encourage ethical hackers to help find and responsibly report security vulnerabilities in our software. https://t.co/iSSvVC3eKj
Here are the slides of my talk at Insomni'Hack
"Go security pitfalls: 2 lessons from the battlefield At Grafana Labs" @1ns0mn1h4ck #INS23
https://t.co/ZguPOJxYqN
The @1ns0mn1h4ck talk "Go Security Pitfalls" from @securingapps is now available and it is really good. Highly recommended if you are dealing with Golang code. https://t.co/uwtEl7QzrP
#SaveTheDate #BSidesZH IS BACK!🥳
Coming on 9th Sept, with our usual particular format: https://t.co/JxL2kCZcKh hosted again by @OntinueMXDR
We are also opening our #CfP, check deadlines👇 1/2
#PleaseRT #DFIR #InfoSec #ThreatIntel #ThreatHunting
@SecurityBSides
@rationalpsyche Thank you !
The corresponding slides: https://t.co/3KogSP0XR4
Here are the slides of my talk at Insomni'Hack
"Go security pitfalls: 2 lessons from the battlefield At Grafana Labs" @1ns0mn1h4ck #INS23
https://t.co/ZguPOJxYqN
I've published the slides of my Insomni'Hack / @1ns0mn1h4ck keynote about INCENTIVES in IT security.
https://t.co/8rA4YAcho6
This is a 🧵 with the key points of my talk. 1/17
#INS23
Most Popular Users
Elon Musk 
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.9M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.5M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.1M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
59.9M followers