@duanehoward@methodtim Hah, yeh I remember this being the best part of working on detection. If you detect it you are the hero, and if you don't, no one knows!
Developers often use open source code that originates outside their organization. Since security is always top of mind, we’re happy to announce that Google is joining the Open Source Security Foundation (OpenSSF)!
https://t.co/1JtmMgmWeB
I'm struggling to understand how people:
1) Just witnessed how public opinion around the term "Black Lives Matter" changed drastically as folk became more educated about what it means.
2) Slide right into popping off about how "Defund the Police" is a "bad marketing term." 🤷🏿♂️
We are looking for passionate and talented Security Engineers to join the Google Security Team in Sydney. Come work with us to defend and protect Google's infrastructure: https://t.co/6GuyaKE3X6
Hey current students, interested in a Security Engineer internship with Google? The application deadline closes TOMORROW, Oct 31 for CA and WA roles. Apply!
https://t.co/0Sl9yvBgvd
Interested in a SE internship in Zurich? Deadline FRIDAY, Nov 1! https://t.co/5Ss0bIy5YJ
... we need to understand an individuals support needs before we can really help them.
For use in systems design as well as community care provision and education
Slides: https://t.co/EE13McXVr1
Github: https://t.co/I4SkBdSidZ
#kawaiicon
We have introduced finer grained isolation policy syntax. Using "https://[*.]https://t.co/dmAn19Bw1u" will isolate each origin that is subdomain of https://t.co/dmAn19Bw1u. Step 2 of https://t.co/BzKuRGIPvN has been updated to reflect this new syntax.
We have introduced finer grained isolation policy syntax. Using "https://[*.]https://t.co/dmAn19Bw1u" will isolate each origin that is subdomain of https://t.co/dmAn19Bw1u. Step 2 of https://t.co/BzKuRGIPvN has been updated to reflect this new syntax.
If you are living your best BeyondCorp life, granular site isolation is critical for defending internal sites against renderer bugs etc leading to UXSS - great to see my team land this
Brandon is actually deploying binary transparency! First targets are Kubernetes and etcd.
Transparency is *so clearly* the next thing in software supply chain security.
@taviso@BenLaurie@sleevi_@damienmiller yeh, it would be, arguably this behavior would make detection easier as it should look significantly different from a normal release, but that implies detection that has a model of historical software @meder 😀
@BenLaurie@sleevi_@damienmiller Yeh, I guess I assume any control you have for inclusion, such as approval, you could have for codesigning. Agree the detection, and no per target bins are a big step forward.
@BenLaurie@sleevi_@damienmiller To confirm, with BT in place, attacker still gets to include and run binary, but existence in log allows faster detection?