Last weekend, I gave the convocation speech at
@uofigrainger
about the importance of people, learning, and finding your fuel:
My (retired professor) uncle offered this positive review: "I liked it since it was pretty short." 😆🎓
I've been reflecting on recent events & how different my life would've been if my parents returned to Iran.
I stand with the courageous women & allies protesting for freedom. My heavy heart goes out to the family & friends of
#MahsaAmini
& others that were senselessly murdered.
This is Iran today. A woman proudly burning the most visible symbol of religious dictatorship; compulsory hijab.
Hijab police killed
#MahsaAmini
but now there are millions of Mahsa in Iran who are shouting NO to Forced hijab NO to gender apartheid regime.
#مهسا_امینی
TIL: middle schoolers use
@Google
Docs as a chat app &
@Google
Sheets as a form of Slack (each slide is a new topic/channel) since other products are blocked at class. Ingenious! h/t
@danshapiro
Any other product hacks the kiddos are doing?
ANNOUNCEMENT: Parisa Tabriz (
@laparisa
), Director of Engineering at Google, responsible for Chrome security and Project Zero, to Keynote
#BHUSA
2018.
"Someone once told me that working in software is 90% collaborating with the smartest and best humans around, 10% realizing something Very Critically Important that you assumed was solid is in fact built out of toothpicks and guarded by angry raccoons" --
@arrkay
It may not solve all security problems, but block+chain does make for a nice necklace!
Thanks to Caesar, a guy that randomly gave me one of these in passing
@BlackHatEvents
! 😂
#BHUSA
today's voicemail: "Parisa, your dad forgot the pin code to his tablet and can't login. Can you tell us how to do any blackhat magic to hack it? Also, call your grandmother. It's her birthday."
"The word 'trusted is a sneaky & confusing term: many people get a warm
fuzzy feeling when they read it, and it is treated as a good thing. In fact the
opposite is true. Anything that is 'trusted' is a potentially lethal enemy of any
secure system." -
@rootkovska
Heading home after a crazy 48 hours at
#BHUSA
! So happy that my talk resonated with many folks & thankful to
@BlackHatEvents
for creating a literally out-of-this-world keynote experience 👨🎤🤘👩💻👸🌚🏔️
Check out Tink, a multi-language, cross-platform cryptographic library that is secure, easy to use correctly, and importantly, hard(er) to misuse: h/t
@XorNinja
"There was a senator, I think it was after my pancreatic cancer, who announced with great glee that I was going to be dead within six months," she recalled. "That senator, whose name I have forgotten, is now himself dead." - RBG,
💪👩⚖️
Once upon a time, a teenager from Uruguay found a security bug in Google, reported it so it could get it fixed, got paid $36337, and then shared his work with the world.
I love happy endings!
Earlier this year I found a Remote Command Execution bug in non-production environments in Google App Engine, and I got 36 thousand dollars!
Now the bug is fixed and I can finally publish my write-up about it:
mom: your uncle said you're in , but it got blocked, and I can't access it.
me: yeah, it's a list behind a paywall.
mom: do you get any money for being on it?
me: no
mom: then I'm not giving money to them!
I want to be like James Mickens when I grow up.
A snippet from his glorious
@USENIXSecurity
abstract (): "Some people enter the industry to build newer, more exciting technology. My keynote will savage these people & burn important professional bridges."
Honored to be included on the
@InStyle
list of badass women who show up, speak up, and get things done: 💪
Also, OMG I AM PICTURED NEXT TO NOTORIOUS R.B.G. SQUEEEEE!!!
Do you think you can beat
@laparisa
? Turn off your WiFi, open a new tab, press spacebar to start, then spacebar to jump. Share your score with
#GoogleChrome
Today is both my first full day of a 2-week vacation, and unfortunately, my first full day of a 2-week quarantine; first responder hubs tested positive for COVID yesterday :(
Stay safe folks! 😷
She's giving me her best "the toilet paper must have jumped out of the closet and started shredding itself" look, but I'm not buying it!
#HappyCaturday
#CatsOfTwitter
I accidentally typed my corp password into the launch celebration meeting chat with 50+ teammates that worked on some of the security and privacy improvements in
#Oops
#PasswordsAreHard
#Ironic
🥸🤪😬
(And then promptly reset it, of course!)
I just missed a call from an unknown number. It was PROBABLY
@TIME
calling to honor me as their "Gingerbread House Decorator of the Year," but I don't answer calls from unknown numbers. PASS!
When I lived in Zurich, I learned that Swiss women didn't get the right to vote until 1971 & needed permission from their husbands to work or open a bank account until 1985! Switzerland still lags on many gender equality issues. Kudos to those demanding better.
#Frauenstreik
I ❤️ the title.
Also, this quote: "Better security won’t come from a team of ninjas repelling into your company. Rather, it will be a longer, harder & much less sexy: a group of dedicated professionals, working tirelessly to overcome technical, cultural & economic hurdles.”
Santa, if you're listening, ALL I want for Christmas is no 0days or CA compromises until at least the New year's champagne wears off. Thank you! 🎅🎄🎁👩💻
I'm so excited to share the
@googlechrome
10th birthday update... COMING THIS WEEK! My team has been hard at work on polish, performance improvements, auto-magic to help users get things done (safely!) with less clicks or bumps, & more...
Also, CAKE! 🥳🦖🎂
#GoogleChrome
Seeing some less-than-sophisticated “research” on Chrome security this week, and wanted to clarify a few things, because some reporters seem to unfortunately be confused about what CVE *counts* actually mean. The answer: not much. 🧵(1/4)
On the phone with a helpful service rep from
@united
who's asking me what my favorite pizza topping & favorite sea animal are so I can change a flight because their website doesn't work.
Dear
@united
, please get rid of these nonsense security questions & adopt 2-factor auth.
Some translations I've learned:
🇦🇺 I lucked out – I was lucky 🇺🇸
🇦🇺 I was unlucky – I lucked out 🇺🇸
🇦🇺 Yeah, right – I don’t believe you 🇺🇸
🇦🇺 I do believe you – Yeah, right 🇺🇸
I'm nearly conversational with locals!