![xvonfers's tweet photo. (CVE-2024-0333)[1513379][Extensions][Updater ][crx_file]CRX3 File Signature Verification Bypass via Embedded ZIP64 Payload is now open with a PoCs.
https://t.co/hgsDFQzMGR https://t.co/AM7eebBq7U](https://pbs.twimg.com/media/GJwCZJRXMAEWQZ5.jpg)
Olivia
Online
Malcolm Stagg
@malcolmst
Ethical hacker @synackredteam. Working on software/electronics, AI and robotics projects @sodium_24. Former @DARPA challenge competitor. Opinions are my own.
Keller, TX
Joined June 2009
247 Following
498 Followers
167 Posts
At this point, there have been a large range of vendor reactions to this research, ranging from “intended design” and “totally bogus” to reports accepted at P1 priority. Still curious to see how it all unfolds in terms of vendor patches prior to disclosure.
I’m excited to be presenting at Black Hat USA this year! My presentation is titled “Breaking Trust Boundaries: Exploiting Design Assumptions in Network Infrastructure” https://t.co/kFwlmr4uEG
This will be available as an on-demand briefing to conference attendees, then later published on the YouTube channel. This research is currently under coordinated disclosure with multiple vendors affected. I’ll try to share more details closer to the conference.
Government overreach kidnapped an orphan squirrel and executed him …
@Jo3Ram Good luck!
@Jo3Ram AFAIK you’ll probably need to see someone with a badge for a hint, unless they added something online since then
@Microsoft @MicrosoftHelps Is there any way I can have correct formatting without being forced to change my privacy settings @Microsoft?
Apparently if you have the Office 365 privacy setting “Turn on all connected experiences” turned off, the Apsos font no longer renders correctly. It silently uses Apsos Display which is totally different spacing. Is this expected @Microsoft? Why force me to have this turned on?
@Microsoft @MicrosoftHelps the only difference between these two screenshots is turning the privacy setting on or off. This shouldn’t cause the formatting to be completely different.
I have a video demo showing exploitation against an enterprise extension
https://t.co/9PbzsxpbT9
Appreciate @synack @README_Security publishing my writeup about CVE-2024-0333:
https://t.co/u6sB4a1ayM
(CVE-2024-0333)[1513379][Extensions][Updater ][crx_file]CRX3 File Signature Verification Bypass via Embedded ZIP64 Payload is now open with a PoCs.
https://t.co/hgsDFQzMGR
![xvonfers's tweet photo. (CVE-2024-0333)[1513379][Extensions][Updater ][crx_file]CRX3 File Signature Verification Bypass via Embedded ZIP64 Payload is now open with a PoCs.
https://t.co/hgsDFQzMGR https://t.co/AM7eebBq7U](https://pbs.twimg.com/media/GJwCap4WUAAUxPT.jpg)
Thanks to the Chromium team for their great work on this!
Interesting Google Chrome vulnerability I reported before Christmas was fixed today (CVE-2024-0333). I’ll post more details later after people have a chance to update.
https://t.co/QzCBiq7QTI
@DARPA @defcon @AnthropicAI @Google @GoogleDeepMind @Microsoft @OpenAI @openssf Will the talk be recorded?
I’m excited to announce the AI Cyber Challenge, a major, two-year @DARPA competition challenging the best and the brightest in cybersecurity and AI to secure the systems on which all American rely.
https://t.co/mZR4ZNSiaM
As we prepare for the holidays, we’re counting down our most popular stories of 2022, starting with “How I hacked my way to the top of DARPA’s hardware bug bounty” by @malcolmst (with art by Si Weon Kim) from January: https://t.co/4isLf1rNXC
Incredibly happy and excited to become an American citizen today! I love this country and all it represents. It is truly the greatest nation in the world. God Bless America!
@Dinosn So now you can just use Notepad to brute-force passwords? That seems convenient 😀
Last Seen Users on Sotwe
Lídia
Seen from Brazil
هنيك مراتك 135K
Seen from United Arab Emirates
Türk İfşa Arşivi
Seen from Turkey
KAPALI GÜZELLER +18
Seen from Turkey
ünlüler burada
Seen from Turkey
Olgun Sırdaş
Seen from Turkey
Suitedoldlover
Hakan Nazlı
Seen from Turkey
🌈 Ñÿî Ńýï Ãřkąř 🌈🇲🇲
แอบถ่ายสาวใหญ่
Seen from Thailand
Most Popular Users
Elon Musk 
@elonmusk
240.6M followers
Barack Obama
@barackobama
119.2M followers
Donald J. Trump
@realdonaldtrump
111.7M followers
Cristiano Ronaldo
@cristiano
110.5M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.6M followers
NASA
@nasa
92.2M followers
Justin Bieber
@justinbieber
90.9M followers
KATY PERRY
@katyperry
87.6M followers
Taylor Swift
@taylorswift13
81.4M followers
Lady Gaga
@ladygaga
73M followers
Virat Kohli
@imvkohli
69.8M followers
Kim Kardashian
@kimkardashian
69.8M followers
YouTube
@youtube
68.7M followers
Bill Gates
@billgates
63.9M followers
Neymar Jr
@neymarjr
62.5M followers
The Ellen Show
@theellenshow
62.4M followers
CNN
@cnn
61.9M followers
X
@x
60.8M followers
Selena Gomez
@selenagomez
60.7M followers