Thomas Garnier retweetledi
The #HEXACON2024 talks have started to trickle in on YouTube, go check them out 🔥:
youtube.com/playlist?list=…
English
Thomas Garnier
4.6K posts
Thomas Garnier
@mxatone
Horizontal Security Lead at Databricks. Worked at Google and Microsoft. Co-creator of Sysinternals Sysmon and Linux KRSI.
Kirkland, WA Katılım Kasım 2010
376 Takip Edilen2.6K Takipçiler
Thomas Garnier retweetledi
Blog post about a bunch of bugs we reported over the last couple of years -- databricks.com/blog/open-sour…
English
Thomas Garnier retweetledi
Serverless compute is now GA! ✅
Focus on writing code while we handle the rest. Enjoy fully managed compute infrastructure with fast workload startup, high reliability, and simple operation.
Learn more about our latest updates: bit.ly/3zPsCXp
English
@pacbypass @sweis You can also argue that nation states steal bugs regularly (cf The Shadow Brokers) and fixing them if you think they can easily be stolen is a good idea.
English
@pacbypass @sweis That's fair. I think it depends on the methodology they used and how much it relies on things that are locked to TAG (vs Google, other vendors or everyone).
English
If Google Project Zero finds a bug and your favorite intelligence agency finds a bug, someone you don't like will find the bug will too.
Michael Coppola@mncoppola
New blog post "Google: Stop Burning Counterterrorism Operations" My reflection on an incident where Project Zero and TAG knowingly shut down an active Western counterterrorism cyber operation, and the real-world harm that could have resulted from it. poppopret.org/2024/06/24/goo…
English
Thomas Garnier retweetledi
There may never have been a day as big as today for indie games.
On the back of mass layoffs of major AAA studios, today more high-profile and under-the-radar gems are releasing on May 9th than any other day in recent memory. They need your support.
Here's a thread of 'em! 🧵
English
@MayaKaczorowski Did you get Entra ID? Active Directory does not exist anymore, ofc.
English
Thomas Garnier retweetledi
I hacked Microsoft's AI bot for healthcare on a Friday night
Within hours I could access data of multiple healthcare organizations, but it didn't stop there
Microsoft fixed the issue, and then I did it again, and again, and again..
Here's the story of Lethal Injection: 💉
English
Thomas Garnier retweetledi
Today we released an open source model, DBRX, that beats all previous open source models on the standard benchmarks. The model itself is a Mixture of Experts (MoE), that's roughly twice the brains (132B) but half the cost (36B) of Llama2-70B. Making it both smart and cheap. Since only 36B expert parameters are used live, it's close to twice the speed (tokens/seconds) of Llama2-70B. We're excited to build custom versions of this for organizations that have proprietary data! Check it out!
databricks.com/blog/announcin…
English
Thomas Garnier retweetledi
Write up of the HVCI bypass vuln (CVE-2024-21305) with @aall86 !
tandasat.github.io/blog/2024/01/1…
English
@sweis Reminded me of the duqu / Stuxnet bug. I didn't know before that TTF uses a VM to draw the glyphs. Create great R/W primitives.
English
This iMessage exploit is crazy. TrueType vulnerability that has existed since the 90s, 2 kernel exploits, a browser exploit, and an undocumented hardware feature that was not used in shipped software:
securelist.com/operation-tria…
English
Thomas Garnier retweetledi
The fact that they developed a complete zero-click to kernel chain, JUST to then force the device to open a web page to trigger the "real" chain, is the most bureaucratic exploit I can imagine 🙈
koeln.ftp.media.ccc.de/congress/2023/…
English
Thomas Garnier retweetledi
As good a time to say this as any: if you’re on the AI research job market, Databricks is hiring, with the mission to democratize AI. We power amazing customer use cases and we publish. Check databricks.com/company/careers or reach out.
English
Thomas Garnier retweetledi
The founders of Databricks put together this strategy blog on where we think data platforms are headed in the future. We're moving Databricks quickly in this direction. This is very exciting and is the outcome of the MosaicML acquisition we did earlier this year!
databricks.com/blog/what-is-a…
English
@MrDBCross It depends on people but I assume some people are amazing at finding issues and find it hard to develop skillsets on the engineering side. Similar to some engineers not really into security.
English
100%. Every security researcher should learn to code. It helps to understand how hard something is to fix. Security and engineering can partner better, get rid of classes of issues or lower the chances of common mistakes.
Jesse D'Aguanno@0x30n
Advice to juniors or those looking to get into security: Learn to code Software is at every level of the stack. Strong software engineering skills will serve you well throughout your career. I would rather teach a strong software engineer security over teaching a traditional security person how to software, any day. Although my background is in vulnerability research, this is not only applicable to finding vulns, appsec, etc. Security operations, network security, etc. automation is the future (current in mature orgs). There are some legacy security professionals that wear “I don’t code” as a badge of honor, but they’re dying out. Just like traditional system administration was replaced by devops.
English
Thomas Garnier retweetledi
The way Kaspersky wrote this, it's an interesting case study of defenders working out how to capture a zero-click exploit. I especially like that Kaspersky said what they tried that *didn’t work*, in addition to what did ultimately work. Let’s dive in with a thread!
English
Thomas Garnier retweetledi