Olivia
Online
Yuriy Bulygin
@c7zero
@eclypsium, @CHIPSEC. Former @intel, @IntelSecurity, @McAfee
Joined April 2010
1.1K Following
4K Followers
2.9K Posts
"Peter Thiel says, you have to be contrarian but right to be an entrepreneur.
So, you have to be comfortable looking stupid for a long time.
When I was calling those banks and saying, "Hey, we're a crypto company. We want to do this," they would hang up on me.
Or I'd go pitch the 30th venture investor and get a no.
Or the thousandth employee we tried to hire or whatever.
We're willing to be misunderstood for a long time.
And then you slowly start to have these breakthroughs.
If you look at Uber, they were fighting for a decade to just be like, yeah, it's actually better and safer than a cab — and the entrenched interests were fighting them.
Or Airbnb with the hotels.
Self-driving cars.
Everything that's truly innovative and breakthrough is going to upset an entrenched incumbent, eventually intersect with the government, and just piss off some segment of the population who are like...
"How dare you question the status quo."
— @brian_armstrong
I've got some really cool gift recently... UEFI Petya PoC: https://t.co/NH0XgugFHB 😁
The BadCAM research has been published! Why is this significant? Attackers can now weaponize connected USB peripherals that run Linux and do not validate firmware signatures.
If you use llamafile, llama.cpp, llama-cpp-python, Oobabooga, LMStudio or any other software that exposes llama.cpp grammar sampling, I found a few remotely exploitable bugs triggered through a single web request that got patched today. More to come from my work at @Eclypsium
Who to follow
Xeno Kovah
@XenoKovah
Interested in reverse engineering, firmware, bluetooth, trusted computing, and training. Founder of OpenSecurityTraining2 https://t.co/slK2fsMRwU
Rodrigo Branco 
@bsdaemon
Chief Architect, Security Research of BigTech
Advisor of Grsecurity. BYOS
Commitee Member of OffensiveCon, Langsec, DistrictCon, Secdev
Alex Matrosov
@matrosov
Security REsearch @Anthropicai · Breaking & Fixing AI Failure Modes | Founder @binarly_io · @SBOM_Tools · @REhints | Author “Rootkits & Bootkits" (https://t.co/1wd2dfYHY6)
found a critical bug that exists in every Linux boot loader signed in the past decade 🥰 https://t.co/kjATsR4uvJ
A recent update to the Eclypsium platform allows customers to detect one of the latest hardware attacks against Intel processors dubbed "Downfall." Downfall allows attackers to steal data from other processes, such as cryptographic keys. Fixes are available for certain platforms.
I found a remote(-ish) memory corruption bug in Intel's BIOS. Bluetooth HID Report parsing is yucky
https://t.co/8s0uQGMo4z
Hundreds of models of Gigabyte motherboards, used in gaming and other high-performance computers, have a backdoor in their firmware that invisibly downloads code to the machine at startup—and does so insecurely, leaving the feature open to abuse. https://t.co/pHNj6GN1ue
Eclypsium analysis found a backdoor in Gigabyte systems implementing intentional functionality during system startup. Due to significant #supplychainrisk, we're disclosing this info & defensive strategies on an accelerated timeline >> https://t.co/HgmUUmFPq2
#supplychainsecurity
ShadowHammer campaign all over again but with MSI now
Attention anyone having an MSI motherboard or computer. MSI just said they were hacked and attackers might have tried modifying BIOS and software updates.
Disable all updates from MSI for the time being
https://t.co/7bm7yYT0Nv
Such a loss :(
It is with profound sadness that we mourn the loss of our friend and mentor, @aloria. Kelly had an indomitable spirit, and our world is a bit darker without her.
New release: #TinyTracer v2.3 : https://t.co/Ajq09c2TUQ - with improved syscalls tracing support - now syscalls are automatically mapped to corresponding functions names
It's no surprise that supply chain security has become a top national priority. In its recently-published SP 1800-34, NIST hones in on one of the most important, challenging aspects of #supplychainsecurity — devices. Here, we highlight the key takeaways. https://t.co/0yeHMzb7Jm
We finally released our research about an 0day RCE we found on the Western Digital PR4100 NAS device. Check it out on our NEW WEBSITE: https://t.co/uTWcu9e8kB
Are you looking to learn about Bootkits, Rootkits, SMM or UEFI exploitation and debug?
With this @_ringzer0 class you will gain hands-on experience in these and more!
https://t.co/QIJl8Aspdy
#RETURN23XPLOIT #offensivesecurity #Training
New Year wish is for Russia to fuck off
Our team has discovered 3 vulnerabilities in American Megatrends, Inc. MegaRAC Baseboard Management Controller software.These vulnerabilities range in severity & include remote code execution & unauthorized device access w/superuser permissions.More here! https://t.co/Pirsj71UiR
Last Seen Users on Sotwe
video trai sục cặc 🍆💦
Seen from Vietnam
malik delgaty
Seen from Vietnam
Yueyi
Seen from Vietnam
Novinho🥵
Seen from United States
Neminz G Wild
Seen from United States
黑糖新村 (150K) KZNV (原黑糖家族)
Seen from United Kingdom
Ayla Costa
kadir.selan
Seen from United States
딸감모음집 마음함
Seen from Korea
bobby
Seen from Japan
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.9M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.2M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.5M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.1M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
59.9M followers