Olivia
Online
Nasko Oskov
@nasko
Security geek with his own views and opinions. Hacking on Chromium to make it more secure, increasing the cost for attackers.
@[email protected]
Seattle, WA
Joined July 2009
1.1K Following
2.6K Followers
9K Posts
@AdamsBunnyranch Chrome has not been the highest bidder on the market, so this is not changed.
We just published an update to the Chrome VRP. Blog post is at https://t.co/SF4sW5ncxZ. The gist: we are restructuring based on the AI advancements to allow for more automated triage and easier to predict payment amounts.
Making inroads into memory safety, one step at a time - https://t.co/XH9XD9YqAM
We are looking for an Android security expert to join our team and work on securing Chrome on Andoird. Job posting is available at https://t.co/QFXfQnQpTD, but also feel free to reach out to me directly.
On DAV1D and fuzzing https://t.co/zLlYbGkMRt
@jduck @argvee @ivansprundel We would all love to have protections! We can't always have them. Mitigations which increase attacker cost or significantly decrease probability of successful exploitation are worthwhile deploying when you don't have luxury of rewriting all the code in reasonable time.
@jduck @argvee @ivansprundel If a JS engine security bug is in the JIT code it produces, what difference does it make what language the engine is written in?
Entire process written in memory safe language is an awesome goal, but with millions lines of code, it does not happen overnight.
📢 Chrome VRP reward updates! 💰 Bigger payouts (up to 5x higher, $250,000+) and clearer guidelines, all designed to incentivize high-quality Chrome security research. Let's work together to make Chrome even safer! 🔐
https://t.co/40Jz6ZFAMf
@CrispinCowan0 @PittaMan @davetamasi @adamshostack @osterman @selfissued @reybango @tanawts @vincentzimmer @rmhrisk @FritzSands @dhw @datSecuritychic @m3ch3l3 @m0thran @pongolyn @VirtualChrista @koronkowy @jerickso @jaybeale Darn it, I won't be around at that time 😞 one of these days I'll be able to make it.
This morning, I read about Satya Nadella’s latest memo, which emphasizes Microsoft’s new priority: security above all. The memo introduces a policy linking senior leadership compensation to the achievement of "security plans and milestones." I see this as a commendable step forward for Microsoft but more will be needed if they are to get back to being a security leader. Some thoughts here: https://t.co/JjgfJGlI5B
Unpopular opinion: companies doing an about-face to focus only on AI while abandoning existing products will regret that decision.
Here's what we've been doing in @googlechrome security in the first three months of this year: https://t.co/Rl4PaXkPQz
I published a step by step guide on using Windows event logs to hunt for malware trying to steal sensitive data from browsers e.g. cookies, passwords etc. https://t.co/9a3l56dDJo #DFIR Hope it's useful!
Last Seen Users on Sotwe
Most Popular Users
Elon Musk 
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers