Olivia
Online
Mathy Vanhoef
@vanhoefm
Prof. @KU_Leuven | Ex-Postdoc NYU | Network Security & Crypto | FragAttacks & KRACK |
Orion Arm
Joined February 2011
1.6K Following
14.4K Followers
3.6K Posts
Pinned Tweet
I found some design and implementation flaws in Wi-Fi again. All Wi-Fi devices are affected. It was a long ~9 months embargo, over this time a lot of info has been collected and that info now available at https://t.co/nAQtK9XY0R
Interesting realization: any bash script can get your geolocation.
Here done using Wi-Fi trilateration on macOS by spawning a chrome browser.
I would assume the same thing is possible on Linux, probably even without spawning a browser.
For 19 years, GPS satellites have secretly broadcast a “numbers station” in their public signals. We decoded 12M messages: a 2011 flash where 31 of 32 satellites flipped in hours, “ghost” substrings repeating years apart, and a “TEXT” prefix spreading now. https://t.co/xz3svmqiDa
wifite2 as many are familiar with through WiFi penetrating testing and/or @kalilinux as a listed tool on the platform made it to a Netflix series 'Bloodhounds' not long ago and both myself and @derv82 appreciate the attention ☺️ wifite2 is open source and covers a range of 'tests
Who to follow
Tavis Ormandy 
@taviso
I'm also @[email protected]
Kuba Gretzky
@mrgretzky
Creator of Evilginx - Reverse Proxy Phishing Framework for Red Teams: https://t.co/hPg644CTnM
TrendAI Zero Day Initiative
@thezdi
TrendAI Zero Day Initiative™ (ZDI) is a program designed to reward security researchers for responsibly disclosing vulnerabilities.
Vulnerabilities not being exploitable in a common configuration also happens often when I audit network code during research. The effort to report them, or describe them in a paper, was often not worth it. So these ‘vulnerabilities’ typically remained unpatched.
We’ve now seen at least four nginx RCEs that require non-default configs: nginx rift, nginx poolslip, and two of our own (including the one in the last tweet).
The configs involved are unusual, which raises the obvious question: do these attacks actually work in real-world deployments?
We asked Claude to download and analyze more than 4,000 nginx config files from GitHub.
The result was embarrassing: none of them were vulnerable to nginx rift or our own attacks. We can’t say anything about nginx poolslip yet, since it hasn’t been published.
So don't worry about your nginx yet.
Moral of the story: AI can generate FUD, but also help fight FUD. Embrace it!
We’ve now seen at least four nginx RCEs that require non-default configs: nginx rift, nginx poolslip, and two of our own (including the one in the last tweet).
The configs involved are unusual, which raises the obvious question: do these attacks actually work in real-world deployments?
We asked Claude to download and analyze more than 4,000 nginx config files from GitHub.
The result was embarrassing: none of them were vulnerable to nginx rift or our own attacks. We can’t say anything about nginx poolslip yet, since it hasn’t been published.
So don't worry about your nginx yet.
Moral of the story: AI can generate FUD, but also help fight FUD. Embrace it!
@veorq I have no doubt about that :) Perhaps EKE was the easiest for them to apply this theory to, instead of taking some of the more recent variants
@IceSolst This probably also helps fuel the LLM hype
(beyond merely their real and formidable utility)
Als een significant gedeelte van de bevolking géén kinderen heeft zullen zij die nog wel kinderen hebben (en investeren om die op te voeden) het niet OK blijven vinden dat de pensioenen van mensen mét en zonder kinderen gelijk blijven.
Nominate yourself to help review papers for USENIX Security 2027! https://t.co/gXhXyAnRuH (or https://t.co/TPDnV0w3VO ). Deadline: May 28, 2026.
We're looking for both senior and junior people. See Andrei Sabelfeld's LinkedIn post for more info: https://t.co/yjYZPfzP18
There’s been some reporting that Meta contributed an unfathomable sum to promote age verification laws globally. This is broadly true, but actual situation is a bit more complex. Figured it was worth an update.
Pre-announcement of BIND 9 security issues scheduled for disclosure 20 May 2026
https://t.co/1muFtSmQhl
[2]After our failed competition, we headed to Apple Store and bought the mbp m5 and spent less than half an hour to set it up and found a fixed offset is changed 1 bit on it, so we just change 1 bit on our exp and it worked with a 100% success rate. Yes just 1 bit change, 1 to 2.
![ga1ois's tweet photo. [2]After our failed competition, we headed to Apple Store and bought the mbp m5 and spent less than half an hour to set it up and found a fixed offset is changed 1 bit on it, so we just change 1 bit on our exp and it worked with a 100% success rate. Yes just 1 bit change, 1 to 2. https://t.co/SzYzz0D3Ke](https://pbs.twimg.com/media/HIZRMiTXMAATG2c.jpg)
NDSS 2027 is looking for volunteers to join the Artifact Evaluation Committee.
If you care about reproducibility & open science, we would be glad to have you on board. All sorts of backgrounds welcome & no prior experience required.
Self-nominate here: https://t.co/j5PDPegpBo
I was hoping to compete in Pwn2Own with a Firefox full-chain entry, but unfortunately it was rejected. I’ve reported the vulnerability to the Mozilla team.
Pwn2Own hit max capacity for the first time in history. We unfortunately couldn’t get in. We submit our research to vendors. Look to our blog for technical breakdowns coming soon!
#cybersecurity #0day #reverseengineering #exploitdev #infosec #xchglabs #pwn2own
https://t.co/vngHIPQFKk
@SwiftOnSecurity This platform has kept going downhill. The "For You" page is mainly interaction slop where tweets stop in the middle of the sentence, right before the "juicy info", to get you to click on it. The "Following" page is less interesting because many people left or are less active
🚨Nominations for the 2026 Pwnie Awards are now open!
Best bug? Worst Bug? Incredible research? Cataclysmic fuckups that knocked over half the internet?
You know who deserves a Pwnie this year! Let us know!
🏇🏇🏇🏇🏇
https://t.co/shPn9ze2ng
Hey everyone. We’ve seen the discussions around Copy Fail (CVE-2026-31431) and the disclosure process. We appreciate the passion from distro maintainers, defenders, and the broader Linux community. This is a serious issue, and we want to share some context on our side in good faith. 🧵
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers