haroon meer @haroonmeer Twitter profile

Pinned Tweet

haroon meer

@haroonmeer

8 years

Our v2 @ThinkstCanary is: - now released; - covered here []; - totally awesome! You really should check it out

8

102

262

Last Seen Profiles

@VSekaiEN

@CleoraL43506

@ppmmployyy

@HumarAtul

@ritsuuu_0206

@Slvallel

@rawad0623

@marianamont

@saturnaliasol

@Erikatoro_S2

@tozonline

@cxxx_bbb

@monicline

@Author_franc1s

@ij421

@MaleeGioia

@K_ittyHawk

@jackofspadesman

@shibakio

@NaPitit

@Najam7770

@sweepwhale

@RepChipRoy

@MaxwellRianNev1

@adamlbarrett

@DeviiSarita

@fn02_jd

@H3z68z7w3V611p

@alejedi

@azdvy44

@LesmahagowHigh

@HaymOoz_sex

@aegibaee

@sekitorisandayo

@LmLp750

@stw_pdg

haroon meer

@haroonmeer

7 years

Everybody thinks it's funny, but nobody spares a thought for the poor Whitehouse sysadmins: Add a user, remove a user, add a user, remove..

70

1K

3K

haroon meer

@haroonmeer

4 years

"if Russia is, in fact, exploiting our racist tendencies to dissolve our union, then you'd have to look at something like racism as a matter of national security" @DaveChappelle being interviewed by @Letterman on #MyNextGuest

39

595

2K

haroon meer

@haroonmeer

8 years

Most people shouldn't be worried about AI stealing their jobs. Small bash scripts maybe, but not AI.

23

1K

2K

haroon meer

@haroonmeer

6 years

Watching the current Saudi/Khashoggi drama unfold live reminds me of the @sarahkendzior quote: “The worst thing .. was not that people got away with lying. It was that they did not - and it did not matter”

5

375

1K

haroon meer

@haroonmeer

5 years

Infosec pals: Folks are genuinely afraid for their families & future. When u say: “I’m here for infosec not politics”, u are saying “I want to talk computers and don’t care if u feel unsafe” If u can’t help/empathize, at least avoid being dismissive & shaming them into silence

44

243

1K

haroon meer

@haroonmeer

3 years

Good news: Log4j is the only library you use that’s been trivially vulnerable for about a decade.

41

130

886

haroon meer

@haroonmeer

6 years

Why do so many security products suck? - people buy them anyway; - paying for complex things feel intuitively “righter” than paying for simple things; - most orgs are so broken that product fails are indistinguishable from org/deployment fails; - few ppl are keeping score anyway

30

238

748

haroon meer

@haroonmeer

6 years

I know I’m being a bit of a killjoy, but I dislike when we do an infosec pile-on (T-Mobile Austria). 1) A popular site was doing something insecurely; 2) Jr social media person didn’t know this. It’s a little funny, a little sad and a lot of “I know this & you don’t” signaling

49

132

716

haroon meer

@haroonmeer

7 years

"It used to be full of hackers & we used to play 'spot the fed'. Now u are all feds & we try to spot the hacker" - @neuralcowboy at #defcon25

9

241

628

haroon meer

@haroonmeer

24 days

This is going to remind a bunch of cybersecurity startups that adding an agent to users machines is a crazy big responsibility…

22

67

567

haroon meer

@haroonmeer

3 years

A security version of the Dunning-Kruger effect: Orgs that lack the skill/talent to secure their stuff, also lack the skill to realize they are insecure.

24

96

548

haroon meer

@haroonmeer

4 years

I have friends who prefer their timelines to be free of “politics”. I’m going to confess the opposite: I have deep, deep respect for people at the top of their field, who take a stand (or take a knee) when it matters. - It has costs; - It takes guts; - I totally see you! ✊️

17

84

519

haroon meer

@haroonmeer

3 years

Re: RSAs Air-Gap (that wasn’t), I once tested an environment that protected its core with an EAL7 Data Diode. It was a fancy gizmo using UDP/lasers. The customer bought two of them, and ran them in opposite directions. Most expensive Ethernet cable ever.

24

95

506

haroon meer

@haroonmeer

5 years

This is: 1) Absolutely amazing; 2) Probably an incredibly specific nightmare for people who fear powerful, brown, Muslim women who can scale walls like super heroes.

15

76

420

haroon meer

@haroonmeer

3 years

I know everyone complains about UI upgrades, but @Twitter swapping the fill/no-fill on the follow/following button is surprisingly confusing. I’m really curious if the designers who did it aren’t heavy users, or if they are playing 4d engagement chess.

20

86

402

haroon meer

@haroonmeer

1 year

The Bear S02E07 (Forks) is such a great episode for founders (or really anyone finding value in their craft). Richies change from an eye-rolling-it-doesnt-matter clock-watcher to finding his way is kinda beautiful..

7

98

393

haroon meer

@haroonmeer

2 years

When you pay for VLC

4

34

394

haroon meer

@haroonmeer

5 years

If the NSA aren’t going to bother giving the vuln a catchy name and a website, I’m not sure we can really take it seriously...

26

54

392

haroon meer

@haroonmeer

7 months

Every few years, I feel compelled to re-post the @sarahkendzior quote: “The worst thing .. was not that people got away with lying. It was that they did not - and it did not matter” __ ¹ posted on the anniversary of the Iraq invasion

1

148

383

haroon meer

@haroonmeer

4 years

A whole bunch of tech/security companies are looking for places to put their marketing money (since we will have about 2000 fewer conferences this year) Open Source projects probably power your org and are still woefully underfunded. Pick one and get your logo on their page!

9

154

334

haroon meer

@haroonmeer

8 months

For the record, @ThinkstCanary cleared $16m in ARR with 0 outbound sales, and almost¹ no marketing. Winning by investing in engineering & the product² is totally doable. __ ¹ We sponsor two podcasts periodically and attend a handful of conferences. ² The whole product.

Jason ✨👾SaaStr.AI Sept 10-12✨ Lemkin

@jasonlk

8 months

The average public SaaS company spends about 50% of its revenue on sales and marketing and 20% on engineering and product I know you want that to be the other way around It just doesn't work that way And at least for now, AI isn't changing that

30

47

376

27

35

326

haroon meer

@haroonmeer

4 years

At least we now know the answer to the age-old question: “When faced with a global threat to life as we know it, will infosec still be arguing about disclosure-policies?”

6

59

307

haroon meer

@haroonmeer

4 years

Global pandemics will often surface second order disasters that were brewing. If this goes on, for example, I’m not sure we are ready for the number of podcasts that are going to be launched.

9

75

303

haroon meer

@haroonmeer

25 days

Heh.. Just discovered that some corp-phishing-simulation sites send mangled Canarytoken alerts to tempt security teams/SoC's to click.. Fate.. Irony.. etc..

8

43

306

haroon meer

@haroonmeer

3 years

@alexstamos Nobody takes the time to write an actual, physical letter anymore. It’s kinda nice.

1

290

haroon meer

@haroonmeer

4 years

My @apple id was disabled on the app-store/itunes (and @AppleSupport can't re-enable it). You intellectually know the risk of walled-garden purchases, but suddenly losing access to the software/content you paid for is jarring. Pretty amazing that theres 0 appeal process.

30

94

290

haroon meer

@haroonmeer

3 years

Wow. Stealing & reflashing robots is really going to be a thing. This is the cyberpunk future we've been expecting...

Jack Herrera

@jherrerx

3 years

DHS and Border Patrol are working together to eventually deploy Ghost Robotic's "dogs" on the border, in particular desert terrain. Terminator dogs will supposedly act as a "force multiplier" for CBP in patrols and interdiction.

804

1K

2K

15

86

284

haroon meer

@haroonmeer

6 years

I downloaded more talks from AWS re:Invent, than I have from any recent security conference. It feels like teams on the edges of startups & unicorns are going to increasingly live in a different world to pen-test/consulting teams. If I still ran one, I’d be pondering this hard.

18

69

282

haroon meer

@haroonmeer

4 years

- When I first saw Twitter, I didn’t get it; - When I saw AirBnB, I didn’t get it; - When I see Clubhouse, I don’t get it. Basically - I’m really lucky this infosec gig is working out

13

9

278

haroon meer

@haroonmeer

6 years

Asked a big “deception” player at #InfosecurityEurope2018 for a quick demo Them: “No” me: because I’m from the competition? Them: Yes! -silence- If your people aren’t super excited to demo your product & If your moat is: “competition shouldn’t see a demo” - you have problems

20

48

267

haroon meer

@haroonmeer

5 years

Pretty awesome that 50% of this duo is from Senegal. A good reminder that talent is widely distributed (even if opportunities aren’t). Congrats @fluoroacetate !

Zero Day Initiative

@thezdi

5 years

That's a wrap! Congrats to @fluoroacetate on winning Master of Pwn. There total was $375,000 (plus a vehicle) for the week. Superb work from this great duo.

33

268

933

4

67

263

haroon meer

@haroonmeer

3 months

This year @ThinkstCanary cleared $19m in ARR. - We still have less than 40 people... - We still do "no" outbound sales... We believe more security-product companies can do this too, by focusing a little more on customer-love. We spoke about it at the @DecibelVC event at RSAC.

12

44

264

haroon meer

@haroonmeer

2 years

Unconfirmed rumours link this to the discovery that @SwiftOnSecurity might not really be Taylor Swift, and that @thegrugq might not be a 16th century Samurai.

Elon Musk puts Twitter deal on hold over fake account details

The billionaire wants more data on fake accounts, prompting speculation over the deal's future.

www.bbc.com

19

33

261

haroon meer

@haroonmeer

4 years

Building the Saturn V with my daughter. Apparently, it uses kubernetes...

7

11

229

haroon meer

@haroonmeer

2 years

One of the positive side effects of the LAPSUS$ breaches is that more people will start thinking of malicious/bribed insiders as a credible threat. It's been used as a reliable vector by the IC forever and will nudge towards internal controls/detection.

11

89

229

haroon meer

@haroonmeer

6 years

It’s not (yet) a tool that my grandparents would use, but the rest of you folks really should be peppering your online data with Canarytokens. They are free, deploy in minutes and will tip you off when your data is being slurped, used or traded.

1

107

210

haroon meer

@haroonmeer

5 years

Analyst: Him: U want to get acquired? Me: Not on our minds Him: What’s ur exit? Me: We are profitable We think too many sec products suck & want to change that We think Canaries help & everyone should have some We want to build stuff we are proud of Him: What do u really want?

22

19

217

haroon meer

@haroonmeer

2 years

…

16

23

213

haroon meer

@haroonmeer

6 years

You often hear people make excuses for others success. "I could do that too if..." Reading "Skunk Works" by Ben Rich (the person who helped invent Stealth Jets) is an interesting reminder why this is wrong minded. Hint: It's probably you

When you can’t do awesome things, because of crushing bureaucracy

I’ve sometimes bumped into people who bemoan their broken company cultures with varying degrees of self-awareness. Around 2007, a then-customer heard we were heading to Vegas to speak at BlackHat a…

blog.thinkst.com

14

57

210

haroon meer

@haroonmeer

4 years

Everyone is talking about how "remote work" is going to be normal. I'm pretty sure the second-order effect is going to be that location-based salaries are going to disappear. Companies will have better access to talent, but talent is going to get better access to companies too.

20

43

209

haroon meer

@haroonmeer

7 years

You can (& should) watch @halvarflake 's BlackHat keynote: "Attack is a technical problem, defense a political one"

Keynote: Why We are Not Building a Defendable Internet

By Thomas Dullien / Halvar FlakeIn IT security, offensive problems are technical - but most defensive problems are political and organisational. Attackers ha...

www.youtube.com

2

92

204

haroon meer

@haroonmeer

7 years

Seriously, take 5 minutes: 1) Make these binaries canarytokens on your boxes. 2) Know when you are owned. (it’s free, you have no excuse not to)

𝕿𝖎𝖆𝖌𝖔 𝕱𝖆𝖗𝖎𝖆

@0xtf

7 years

Fuck! Hopefully clients of “next-gen endpoint security” will miss this presentation! 😅 #botconf

1

33

103

1

67

197

haroon meer

@haroonmeer

3 years

It would be awesome if Facebook released an official statement thats wildly simplistic: “Sorry, the disk was full. Arthur deleted some old photos and it looks ok again”

10

23

193

haroon meer

@haroonmeer

3 years

DEF CON videos are already up. It's pretty great. Well played @defcon

DEFCONConference

This is the official DEF CON YouTube channel. What is DEF CON? Check out https://www.defcon.org/ We'll be posting videos and pictures from past conferences here, starting with DEF CON 20 and working...

www.youtube.com

2

66

187

haroon meer

@haroonmeer

7 years

Deloitte : compromised for months & didn't know; SEC : ditto; Equifax : ditto Seriously Canarytokens are free

Thinkst Canary: Know. When it Matters!

Most companies discover they've been breached way too late. Thinkst Canary fixes this: just 3 minutes of setup; no ongoing overhead; nearly 0 false positives, and you can detect attackers long before...

canary.tools

6

82

188

haroon meer

@haroonmeer

3 years

Security experts: Nobody can secure AD, stop using it. Microsoft Exchange: Hold my CVE(s)

2

35

191

haroon meer

@haroonmeer

3 months

Walked the #RSAC floor. The obvious winner this year: - the .ai domain registrar

6

17

189

haroon meer

@haroonmeer

6 years

The non-chronological Twitter-timeline is a mega-pain during a conference. I keep seeing tweets about something I would have loved to have attended, that happened 10 hours ago.

11

15

178

haroon meer

@haroonmeer

7 years

Re #ShadowBrokers There are always 0-days/exploits for systems u are running. Act accordingly. Invest in Segmentation, Detection & Response

4

126

170

haroon meer

@haroonmeer

4 years

The one good thing about #Covid_19 is the reminder that social safety-nets help us all. If you can afford healthcare but the people driving your cabs, delivering your packages and making your food can’t, you’re in trouble too.

6

68

169

haroon meer

@haroonmeer

6 years

We ( @dugsong & I) aimed to give a BlackHat talk on building security companies The plan was to encourage haxors to build hacker-led orgs (with tips, tricks & pitfalls of bootstrapped & VC backed models) - Rejection happens; - 25 yr old me just wanted to present with Dug Song!

17

15

167

haroon meer

@haroonmeer

5 years

Hot take: 1) There’s lots of broken things 2) There’s a low bar to pointing out broken things¹ 3) Choosing which of those things to aim at is tough __ ¹ Some ppl who point out broken things shld absolutely be listened to Others just create busywork that doesn’t shift the needle

8

29

162

haroon meer

@haroonmeer

4 years

Bunch of Nigerian Princes: “They just sent them a Visual Studio project?”

5

22

163

haroon meer

@haroonmeer

2 years

I’m genuinely amazed that so many EDR vendors use their TOS /EULAs to forbid customers from publishing benchmarks/comparisons of their software. 1) it’s crazy user hostile; 2) it results in so much duplicated work; 3) it’s such weak sauce. Don’t be that vendor…

15

20

156

haroon meer

@haroonmeer

3 years

Interesting to see how @moxie ’s post changed the tenor of discussions on web3 (at least on my timeline). The strongest proponents shifted from “it’s the solution” to “it could be with a lot more work”. Also a lesson for us: Nothing beats doing the work & writing it up cogently.

9

19

157

haroon meer

@haroonmeer

5 years

The actual Silicon Valley Unicorn: A tech-company that IPOs without HackerNews believing they could build it in a weekend.

3

25

151

haroon meer

@haroonmeer

3 years

More hackers should run companies. More hackers should build products.

Moxie Marlinspike

@moxie

3 years

A few months ago Cellebrite announced that they would begin parsing data from Signal in their extraction tools. It seems they're not doing that very carefully. Exploiting vulnerabilities in Cellebrite's software, from an app's perspective:

100

2K

5K

7

33

152

haroon meer

@haroonmeer

3 years

The Egyptians should be releasing pics of the ship/rescue as NFTs. These things are going to power tech/security presentations for months.

8

14

151

haroon meer

@haroonmeer

6 years

If you are a young security company thats considering doing an #RSAC booth, but are unsure, we have you covered: We wrote a (loooong) post on our experience with RSAC 2018 (surprisingly, it's not all bad!)

Considering an RSAC Expo booth? Our Experience, in 5,000 words or less

Introduction Thinkst’ers have spoken at a heap of security conferences across careers spanning decades, and yet last year (2017) was the first time any of us actually attended RSAC ( when I a…

blog.thinkst.com

11

56

152

haroon meer

@haroonmeer

1 year

Kevin Mandia's ( @Mandiant ) #RSAC keynote lists 7 tips for Cyber Defense¹. Tip #3 - Build honeypots "..effective at helping organizations detect intrusions or malicious activities that security products can’t stop" We kinda agree... __ ¹

Mandiant CEO’s 7 tips for cyber defense

Organizations’ institutional knowledge is an advantage that no adversary can match, Kevin Mandia told RSA Conference attendees.

www.cybersecuritydive.com

2

22

146

haroon meer

@haroonmeer

4 years

Some of us grew up in Apartheid South Africa and still remember how sanctions and boycotts helped in the fight for freedom. In the words of Bishop Desmond Tutu: “If you are neutral in situations of injustice, you have chosen the side of the oppressor”.

3

34

150

haroon meer

@haroonmeer

4 years

The industry has always been overly distracted by 0days. Many great attackers will tell you how often they’ve wreaked havoc without em. A much more reasonable position is realizing that attackers *have* to do some things after gaining access, and this is where detection can win

Halvar Flake

@halvarflake

4 years

Given the recent NYT book excerpt that seems to suggest that the right way to do defense is for the government to patch 0day: Could someone please explain to me how this would lead to secure systems?

5

4

30

12

29

148

haroon meer

@haroonmeer

3 years

Ppl often release attack tools & write a paragraph on defensive possibilities. We’re changing that. Here’s a post on the thought-process involved in building a MySQL-dump canarytoken (touching on its SQL injection application) (It’s worth the read)

3

50

144

haroon meer

@haroonmeer

7 years

BlackFriday Special: Create an unlimited number of @ThinkstCanary Canarytokens at and deploy them around your org. Any tokens created today and tomorrow are 100% free forever¹ __ ¹ Normal price: $0.00

0

76

144

haroon meer

@haroonmeer

8 years

Our @t2_fi talk "Learning the wrong lessons from offense" is up. Counter the "think like an attacker" narrative.

Haroon Meer keynote 2016 | t2 infosec conference

Learning the wrong lessons from Offense keynote video.

t2.fi

4

72

142

haroon meer

@haroonmeer

3 years

“a man gotta have a code” - RIP

3

28

137

haroon meer

@haroonmeer

6 years

Hard problems in computer science: - Cache invalidation; - P vs NP; - Unsubscribing from the gnupg-users mail list.

6

20

137

haroon meer

@haroonmeer

6 years

Part of the #RSAC / trade show silliness, is being gouged & paying 3x - 5x for everything. (power, carpets, etc) Rent a 55” TV for the conf? - $700 So, we bought a 55” at Target (for $400 instead) & will give it to a worthy cause before leaving. Worthy cause suggestion in SF?

18

29

136

haroon meer

@haroonmeer

6 years

We've had $150,000 USD stuck in @PayPal for ~2 yrs Can see our balance, but can't withdraw. Can contact @AskPayPal but that's a black hole. I have 2 thoughts: 1) I'm not sure if this is a phishing site playing the long game; 2) No wonder @stripe & @Square are eating their lunch.

20

23

133

haroon meer

@haroonmeer

2 years

An odd infosec-startup secret is how low the bar is, even from a business p.o.v. People think they need Facebook numbers, but if you have 2000 happy, paying customers, you will be better than huge swaths of the RSAC floor. More hax0rs should try. We need more things that work..

9

11

138

haroon meer

@haroonmeer

3 years

Windows users have to disable the spooler service as a mitigation. This might affect printing. Linux users: what’s a printing ?

Dave Kennedy

@HackingDave

3 years

2021-1675 is spicy 🔥 and highly critical. The June patch does not work against the remote DLL loading and a fully patched system allows RCE from a regular user on anything using the printer spooler. It's not just DCs. Only option is to disable the printer spooler service.

22

88

226

8

18

132

haroon meer

@haroonmeer

2 years

We eventually broke down and decided that someone should look into running some sort of EDR agent on our Macs.. What an absolute mess… Stuff looks like permanent, extended betas.. near impossible to download/buy/try… Seriously.. what a $@@&%#^ show

41

6

136

haroon meer

@haroonmeer

4 years

When the twitter-hack happened, we didn’t jump to “Canaries could help” (not enough info & we avoid this sort of talk anyway) If the NYT is right, re:rogue employee abusing creds found on an internal slack, this is totally a use-case we’ve discussed before for free Canarytokens

6

31

129

haroon meer

@haroonmeer

4 years

Another day, another vendor hacked. We’ve long argued that this reckoning was coming & that sec companies are under-investing in their own security. We previously wrote a post on how we think about the security of our @ThinkstCanary - It’s worth a read

Are Canaries Secure?

What a question. In an industry frequently criticised for confusing security software with secure software, and where security software is ranked poorly against other software segments, it’s …

blog.thinkst.com

6

30

133

haroon meer

@haroonmeer

4 years

I’ve seen a few tweets where ppl warn you that HR is not on your side, it’s on your company’s. This is correct, and short term, it means you probably shouldn’t trust HR too much. Long term: try to find a place where you and your company share a side. (Or try to build one)

5

19

127

haroon meer

@haroonmeer

7 years

Public Service Announcement: You don't need conferences (or review panels) to validate u or ur work. Fame is fickle - Create, share, learn

4

67

127

haroon meer

@haroonmeer

4 years

STG is paying $2.075 billion for RSA (and the RSA Conference) STG just wanted a booth and 3 chairs but figured for just a little bit more they could get SecurID and NetWitness thrown in too.

4

26

128

haroon meer

@haroonmeer

2 years

Lots of people are pointing out how this filename looked like a Canary. This is why Canaries & Canarytokens work. Because even if they look suspect, attackers really have to access them. We/ @ThinkstCanary drive down the cost/effort of deploying them so it becomes a no-brainer.

Raj Samani

@Raj_Samani

2 years

"hackers accessed a spreadsheet on Sitel’s internal network early on January 21 called “DomAdmins-LastPass.xlsx.” The filename suggests that the spreadsheet contained passwords for domain administrator accounts" #cybersecurity #Infosec

2

21

38

4

19

122

haroon meer

@haroonmeer

4 years

It’s dead simple, and you can even pull this sort of thing off with our free Here’s a relevant snippet from our @ThinkstCanary Birding Guide

1

21

122

haroon meer

@haroonmeer

1 year

Do Fortinet make remote access devices? Kinda…

9

19

121

haroon meer

@haroonmeer

11 months

It’s hard to stress this enough. Custom tripwires work. Maintaining them gets painful. It’s why we do @ThinkstCanary Use At the very least: use our free

Thinkst Canary: Know. When it Matters!

Most companies discover they've been breached way too late. Thinkst Canary fixes this: just 3 minutes of setup; no ongoing overhead; nearly 0 false positives, and you can detect attackers long before...

canary.tools

John Sakellariadis

@johnnysaks130

11 months

NEW: A custom alert State Dept. IT analysts implanted into their networks two years ago enabled the agency to spot and unravel one of the highest profile hacks of the summer. From me and @magmill95

6

100

246

3

29

120

haroon meer

@haroonmeer

3 years

If you are in tech/sec leadership: Omicron & Log4j hit companies when many were hoping for a break after 2 long years. Part of the dark cloud is pondering a whole year / another tour of duty without that break. Maybe take the time to arrange it / commit to it to avoid burnout.

3

33

122

haroon meer

@haroonmeer

5 years

"We hate companies that tell us how much they value our business, but reserve special deals and discounts for new customers only. We want to fix this." (cc: @ThinkstCanary )

4

24

121

haroon meer

@haroonmeer

9 years

FireEye exists to stop 0days. Raft of 0days reported in FireEye boxes. Obviously we need another box that stops 0days in front of FE boxes.

25

171

117

haroon meer

@haroonmeer

5 years

For the first time in human history, we have applications owned by single private corporations mediating interactions between people across the world in near real-time. Two things are true: - we can’t put that genie back; - very little about how to handle it is simple.

5

47

117

haroon meer

@haroonmeer

5 years

The rarely-told origin story of one of the nicest haxors around:

3

35

119

haroon meer

@haroonmeer

6 years

1) I wld never have believed before having our daughter that having a kid makes you more empathetic to children’s pain; 2) I’m _that_ over paranoid, over protective dad; 3) Tweets on the current US immigration/asylum/torment make me want to leave twitter. Come on USA. Be better

5

14

117

haroon meer

@haroonmeer

5 years

It’s official people. BlackHat is serious bid’ness now...

13

17

114

haroon meer

@haroonmeer

3 years

Watching all my US friends vax up gives me mixed feels. - On the one hand, I feel super happy for you. - On the other, it’s going to be a (long) while before this trickles down to us (and you kinda want to feel angry at someone about it).

13

5

114

haroon meer

@haroonmeer

8 years

Maybe nobody told Symantec that they could just revoke the BlueCoat CA certificate?

6

72

111

haroon meer

@haroonmeer

3 years

It’s super hand-wavy, but I think one of the biggest problems in infosec, is an inability for most people to differentiate between “talks a good game” and “makes a significant positive difference”. This applies equally to people and products we use.

11

14

113

haroon meer

@haroonmeer

5 years

Last night we added our logos/graffiti to our (relatively new) Johannesburg office. It took us till about 04h35 but @marcoslaviero and @BradleyJayanath pushed through. Totally worth it!

7

4

114

haroon meer

@haroonmeer

3 years

We don’t talk about it often (it sounds kinda preachy) but supporting OpenSource projects we use is simple and doesn’t need to wait till we are “bigger”. We pay the rent; We pay for our laptops; We pay for our compute. We can (and should) contribute $’s to projects we rely on.

2

21

112

haroon meer

@haroonmeer

5 years

Sometimes, you don’t choose the elevator pitch. The elevator pitch chooses you!

5

16

113

haroon meer

@haroonmeer

4 years

It’s funny how many of us are surprised that world is racist, while knowing that we, our families & social groups still are too. It then becomes a form of gaslighting, because we act like the world is better when we _know_ it’s not. Let’s start. At home, at work. Be the change.

5

29

113

haroon meer

@haroonmeer

6 years

The Twitter & Github “logged password” bugs should remind everyone why SSL in transit and hashed passwords are necessary but not sufficient (and why in infosec, there’s a bunch of issues hidden in crevices beyond easy to spout “solutions”)

2

55

108

haroon meer

@haroonmeer

3 years

In the run up to the great cyberwar, most talks and press coverage of insecure systems talked about 0-days...

8

31

109

haroon meer

@haroonmeer

5 years

You know, I think I might have been right with this thread iOS devices being owned en-masse (while being undetected) makes it clear that inspectability is an important part of security Also:

haroon meer

@haroonmeer

6 years

The work done by the Apple security teams (and their walled garden) have resulted in an ecosystem that’s been justifiably praised by security folks. #NSO selling 0-interaction exploits that everyone is powerless to defend against is the flip side of that coin. Too closed maybe?

3

17

61

3

28

108

haroon meer

@haroonmeer

7 years

Known now, but back in 2010, we warned that threat models ignored the @taviso problem (Most of it holds up well)

Cyberwar – Why your threat model is probably wrong!

(CCDCOE / June 2010) My original brief was to talk on how i would go about attacking a modern connected state. I noticed that Charlie (Miller) was covering this topic, so opted to go another route.…

blog.thinkst.com

3

48

107