Olivia
Online
Steven Danneman
@sdanndev
Security Engineer, finance geek, traveler.
@[email protected]
Seattle, WA
Joined January 2017
306 Following
175 Followers
266 Posts
Pinned Tweet
When you go looking for bugs... you find them.
@travismcpeak @leifdreizler Mt. Gox went bankrupt in March 2014. The court has just delayed payouts for another year.
You should be aware of the term "harvest now, decrypt later". At some point, the encryption we use today will be easily crackable. Don't rely too heavily on it. Better to be very protective of where your data ends up, even if it's encrypted.
Credit union BECU has turned off Quicken access for 2 months and counting due to cyber attacks. MANY banks still allow user:pass only access to OFX with no MFA, ripe for password spray and reuse attacks.
https://t.co/vnkOvrIt3Y
@JackRhysider I'd like you to know that after listening to 100 wonderful episodes of Darknet Diaries I heard your voice in my head reading this post.
Thanks @paymentvillage for a fun, realistic, hacking challenge! $100,000 charged and 18 card numbers stolen. #DEFCON31
@__muscles Thanks for the bourbon. Great to commiserate on AWS SSO with you.
SSL/TLS issues come up all the time during PenTests and explaining the technical detail of all of the different TLS configuration options can be quite difficult - so I put together a handy guide!
https://t.co/mCNEjDyv7H
@tecknicaltom Cash, in a brown paper bag, at a dead drop.
@arkadiyt * Uses authn/authz outside the supported path
* Creates a new public endpoint/API
* Involves payments/money
List the product areas that are high impact or frequently cause security bugs.
@travismcpeak Welcome!
Just got laid off from Google. If anyone needs SMB 1/2/3 protocol or Open Source experience, I'm interested.
if you don't release an API people will build a whole selenium browser automation over it smh
@molly_struve You should put "trigger warning" on content like this. So much time spent asking WTF is this service?
@MalwareJake The fictional version is a really enjoyable yarn.
https://t.co/taA2Pn0Wf4
As an industry, security needs to move away from filing a vulnerability Jira ticket and calling it a day. Business risk is only reduced when vulnerabilities are mitigated or fixed. Far too many Jira tickets stay open for months or even years. In these cases, we haven't helped. 🧵
The most thorough timeline and technical explanation of the incident I've read so far. A lot of good lessons learned for other companies in this post mortem.
A lot has been spoken about Uber case, but I went and purchased the trial transcripts before they were set to release in 2023:
A blameless post-mortem of USA v. Joseph Sullivan
https://t.co/qNyt3bqJKb
A lot has been spoken about Uber case, but I went and purchased the trial transcripts before they were set to release in 2023:
A blameless post-mortem of USA v. Joseph Sullivan
https://t.co/qNyt3bqJKb
Last Seen Users on Sotwe
sex tutkunu
Seen from Turkey
ivy 🇹🇷 
Seen from United Kingdom
hoa_dâm_bụt
Seen from Australia
So ud
Seen from United Arab Emirates
Đoàn Minh Trí (Trí Bot)
Seen from Vietnam
KOREAN LOVER HD
Seen from Saudi Arabia
Mom son love
Seen from Indonesia
irem
Seen from Turkey
Şevval
Seen from Turkey
türbanlı delisi
Seen from Turkey
Most Popular Users
Elon Musk
@elonmusk
240.3M followers
Barack Obama
@barackobama
119.2M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.6M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.4M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.7M followers
KATY PERRY
@katyperry
87.1M followers
Taylor Swift
@taylorswift13
81M followers
Lady Gaga
@ladygaga
72.5M followers
Kim Kardashian
@kimkardashian
69.5M followers
Virat Kohli
@imvkohli
69.1M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.6M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.7M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.2M followers