Jay Lagorio 🅅

19.2K posts

Jay Lagorio 🅅

Jay Lagorio 🅅

@jaylagorio

Massachutean in Maryland doing the work that needs to get done. Licensed Private Investigator. Hacks and NatSec, but in a weird way. CFP Board for @districtcon

@jay.lagor.io Katılım Kasım 2008
434 Takip Edilen528 Takipçiler
Jay Lagorio 🅅
Jay Lagorio 🅅@jaylagorio·
OK, maybe about a week with a mechanical keyboard instead of my standard Dell and... I may have been wrong to shit talk the Mechanical Keyboard Master Race people all this time
English
0
0
2
21
Jay Lagorio 🅅 retweetledi
Vivian
Vivian@suchnerve·
The United States Postal Service, USPS, doesn’t “lose” money. It costs money. It’s a public service. Don’t fall for the privatization propaganda.
English
347
17.8K
115K
1.1M
Jay Lagorio 🅅 retweetledi
wint
wint@dril·
"you have 1 hour to edit your post" you have one hour to shut the fuck up because i just typed and posted that shit flawlessly
English
14
304
4.4K
112.9K
Jay Lagorio 🅅 retweetledi
MG
MG@_MG_·
Ep2 dropped. This is such a stressful episode to watch. And the $66 M wallet value isn’t even the sketchiest part. @joegrand you handled that situation very well. youtube.com/watch?v=TGmGiN…
YouTube video
YouTube
MG@_MG_

My friend @joegrand did it again. He’s not just recovering millions in crypto wallets, but also unveiling messy relationships, betrayal, etc. A very entertaining watch reminiscent of the start of a murder mystery. He’s also upgraded from voltage glitching to electro magnetic (EM) glitching. It’s sort of a very complicated Jedi Mind Trick on chips. Here’s a high level explainer: Let’s say the hardware wallet has a max pin retry limit. And it’s coded like this: if attempts >= MAX_ATTEMPTS: lock_device() Inside the chip, the values of attempts and MAX_ATTEMPTS are just bits. 0s and 1s. Literal voltage levels that are low or high. Stored in tiny transistor circuits. When the processor reads them, those electrical states travel through logic gates that perform the comparison. Normally the comparison works fine. But what if you could reach inside the chip and disturb those electrical signals right at the moment the chip is doing that comparison? That’s what EM injection allows. It’s essentially just a few loops of wire held over the chip and a very fast bust of voltage is sent through it. It’s not as simple as it sounds though. You have to discover: - the exact moment in time during execution - the exact physical spot on the chip package - the right distance from the chip - the right pulse voltage - the right pulse duration - the right probe geometry The search space is HUGE. An exponential needle in a hay stack. If you are really familiar with hardware, you can narrow things down, but it’ll still take weeks of searching even after you have automated it. And even after all of that, there is still risk to the wallet across all the steps. Hell, the wallet could be somewhat damaged before Joe even gets it. And tons of people end up not even having the crypto they thought they had. Imagine if one of those people ends up with a dead wallet and blames Joe for it, all while incorrectly thinking they had millions. 😬 youtu.be/MhJoJRqJ0Wc

English
2
3
31
6.7K
Jay Lagorio 🅅 retweetledi
cursed_connectors
cursed_connectors@cursedconnector·
every day we stray further from god. and, the the average person who lashes up something like this, they stray just that little bit closer to god.
Out of Context Mex@Out0fContextMex

English
26
160
3.1K
145.5K
Jay Lagorio 🅅 retweetledi
Samantha Ruddy
Samantha Ruddy@samlymatters·
I love that people from Massachusetts created the most generous, socialist health care system in all 50 states while also being the most aggressive drivers. They’re like “I want my neighbors to have the best care. They’re gonna need it if they don’t get out of the left lane.”
English
73
992
13.9K
1.5M
Jay Lagorio 🅅 retweetledi
cje
cje@caseyjohnellis·
ok. let's go back to calling ourselves hackers.
English
5
4
69
4.5K
Jay Lagorio 🅅 retweetledi
Ben Hong 🦋
Ben Hong 🦋@bencodezen·
Me looking at all the developers who avoided writing good docs and are now proudly showing off their AI prompts thinking it'll do exactly what they want.
GIF
English
1
2
7
1.1K
Jay Lagorio 🅅 retweetledi
J. A. Guerrero-Saade
J. A. Guerrero-Saade@juanandres_gs·
Apart from being an amazing RE talk, I’ve never seen someone make better use of a 1 hour slot. Hats off to @lauriewired.
J. A. Guerrero-Saade tweet media
English
4
8
201
18.3K
Jay Lagorio 🅅 retweetledi
SwiftOnSecurity
SwiftOnSecurity@SwiftOnSecurity·
Using your position as a senior employee or customer to recognize people, maybe helping them improve their own position, is its own reward. That is far, far more power than another complaint.
SwiftOnSecurity tweet media
English
3
4
64
6.3K
Jay Lagorio 🅅 retweetledi
Ari Cohn
Ari Cohn@AriCohn·
The First Amendment does not recognize any such thing as "internet adulthood" when it comes to the expression that people can access. Period.
Ari Cohn tweet media
English
17
84
463
28.1K
Jay Lagorio 🅅 retweetledi
solst/ICE of Astarte
solst/ICE of Astarte@IceSolst·
@vxunderground Unironically many ultra-talented people have low self esteem, like “here I created a new form of quantum proof 4D Rust (Bitcoin style) malware targeting copilot, in case anyone cares 🥺, am I cracked chat”
English
9
6
163
5.5K
Jay Lagorio 🅅 retweetledi
solst/ICE of Astarte
solst/ICE of Astarte@IceSolst·
There’s an astronomical skill gap between good security people, and the rest. There’s no mid. Accounts you see posting their research here are absolutely cracked, it’s not the norm. When you go out and talk to security folks that don’t go to conferences, don’t read up on research, you realize- holy shit. They have no fucking clue. The majority of the cybersecurity work force is absolutely incompetent. It’s partly why vendors can come up with inane bullshit as marketing material and it works on many CISOs. If you’re reading this, you’re most likely 1000x the skill level of the average person. Like I cannot emphasize enough how low the bar is when the sample size is the entire industry.
English
147
96
1.6K
173K
Jay Lagorio 🅅 retweetledi
Tyler Glaiel
Tyler Glaiel@TylerGlaiel·
I feel like younger people don't realize that the internet wasn't always optimized solely to make you as angry and miserable as possible, and people are having a lot of nostalgia for 2000s internet vibes now because it wasn't like that back then
English
335
4.9K
38.6K
627.3K

Keşfet

@joegrand @lauriewired @vxunderground @elonmusk @BarackObama @taylorswift13 @cristiano @BillGates