David Oswald

3.3K posts

David Oswald

David Oswald

@sublevado

Live as if today's yesterday was the day after yesterday's tomorrow.

Katılım Mart 2009
385 Takip Edilen483 Takipçiler
David Oswald retweetledi
nSinus-R (@nsr@infosec.exchange)
nSinus-R (@[email protected])@nSinusR·
We have a PhD position opening over at the University of Birmingham! If you are interested in embedded systems, low-level hacking, telco security or trusted execution environments, feel free to reach out. Happy to discuss. Current Application deadline: Dec 5th.
English
0
11
21
3.1K
David Oswald
David Oswald@sublevado·
@PreetKGillMP The top one on the list (A38 between Speedwell and Priory) is probably leading because it is one of the few with working average speed cams. Having more of these would help to address the wider issue.
English
0
0
1
50
Preet Kaur Gill MP
Preet Kaur Gill MP@PreetKGillMP·
Hagley Road, Bristol Road, Ridgacre Road and Shenley Lane in my constituency have been named as some of the worst roads in #Birmingham for speeding drivers. I am working with leaders in our city and region to address this. bit.ly/3XzCy0C
English
2
3
12
956
David Oswald retweetledi
James Watson CEng, FIET
James Watson CEng, FIET@EngineerLondon·
What’s a #BlackStart? Well it’s NOT an outage, power cut, loss of supply, localised fault, blown fuse, shutdown, trip, fault. It’s a TOTAL shutdown of the power system, with the desynchronisation of all power stations. It’s DEAD 😵 We have NEVER had one. So relax folks ☺️ [1/20]
James Watson CEng, FIET tweet media
English
29
86
338
64.5K
David Oswald retweetledi
nSinus-R (@nsr@infosec.exchange)
nSinus-R (@[email protected])@nSinusR·
Our paper "SIMurai: Slicing Through the Complexity of SIM Card Security Research" just went public! In this paper, we explore the question: What kind of attacks could a hostile SIM launch against your phone? Surprisingly, a lot.
nSinus-R (@nsr@infosec.exchange) tweet media
English
2
97
256
33.4K
David Oswald retweetledi
Preet Kaur Gill MP
Preet Kaur Gill MP@PreetKGillMP·
Dangerous driving in our area has become a huge safety concern. I've been campaigning on this since 2021 with little progress made due to funding cuts. Pooling resources is vital. I've written to @SimonFosterPCC and @CllrMajid calling for action to improve road safety.
Preet Kaur Gill MP tweet media
English
32
35
167
27.5K
David Oswald retweetledi
Chomba Bupe
Chomba Bupe@ChombaBupe·
We fundamentally don't understand how dogs work inside thus we should be scared of dogs causing an extinction level event in about 5 to 10 yrs. All governments should allocate 10% of their respective budgets to safe guard against an uprising of super-dogs.
ControlAI@ControlAI

Ex-OpenAI safety researcher William Saunders: — We fundamentally don't know how AI works inside — A lot of people in OpenAI think we could be 3 years away from something dangerous — GPT-5 could be the Titanic

English
17
62
279
30.7K
David Oswald retweetledi
Charlie Miller
Charlie Miller@0xcharlie·
On the one hand Signal had some bad bugs that are now fixed. On the other hand when a bad guy is running code on your computer, your messenger apps are not going to be able to protect your comms.
Mysk 🇨🇦🇩🇪@mysk_co

TL;DR: Don't install @signalapp for macOS, it is not secure. I carried out this small experiment: - I wrote a simple Python script that copies the directory of Signal's local storage to another location (to mimic a malicious script or app) - I ran the script in the Terminal and got a copy of my Signal data on my Mac - I booted a fresh macOS installation in a virtual machine - I transferred the copy of Signal's data to the VM and placed it where Signal expects it: ~/Library/Application\ Support/Signal - I installed Signal and started it - Signal started and restored my session with all the chat histories 😳 - I exchanged a couple messages with a contact from the VM and it worked 😳 - Then, I started Signal on the Mac - I got three sessions running in unison: Mac, iPhone, and VM 😳 Messages were either delivered to the Mac or to the VM. The iPhone received all messages. All of the three sessions were live and valid. Signal didn't warn me of the existence of the third session [that I cloned]. Moreover, Signal on the iPhone still shows one linked device. This is particularly dangerous because any malicious script can do the same to seize a session. Perhaps this flaw is what makes some users think that Signal has a "backdoor" as it is easy for sophisticated attackers to target a victim who's using the Mac app and see their chats. (The same may be also true for the Windows app) #privacy #security

English
7
31
152
33.1K
David Oswald retweetledi
Gautam Kamath
Gautam Kamath@thegautamkamath·
*Must read* for anyone interested in ML security, by Nicholas Carlini. Attacks are the only way we know whether or not a purportedly secure system actually is. Moreover, I consider personal attacks like this unacceptable in my research communities. nicholas.carlini.com/writing/2024/w…
Gautam Kamath tweet media
English
1
45
271
64K
David Oswald retweetledi
Naomi Fisher
Naomi Fisher@naomi_fisher·
The 1st picture is the latest victim of road violence, Mayar Bahia RIP The 2nd picture is of the scene. The 3rd tells you what you can do. The 4th doesn’t exist yet, but statistically, another person will die due to road violence in B’ham next week. @for_birmingham
Naomi Fisher tweet mediaNaomi Fisher tweet mediaNaomi Fisher tweet media
English
0
12
18
2.9K
David Oswald retweetledi
Prof B Buchanan OBE FRSE
Prof B Buchanan OBE FRSE@billatnapier·
Lattice methods still safe ... eprint.iacr.org/2024/555 "Update on April 18: Step 9 of the algorithm contains a bug, which I don’t know how to fix. See Section 3.5.9 (Page 37) for details. I sincerely thank Hongxun Wu and (independently) Thomas Vidick for finding the bug today.
Prof B Buchanan OBE FRSE tweet media
English
0
7
21
1.3K
David Oswald retweetledi
Carsten Baum
Carsten Baum@crypto_carsten·
This looks serious. Damn serious. Some lattice expert can say something about it? eprint.iacr.org/2024/555
English
9
39
151
53K
David Oswald retweetledi
Emma 💛💙🇩🇰🇬🇧🇪🇺
Emma 💛💙🇩🇰🇬🇧🇪🇺@MonkEmma·
Gosh, this sounds terrible. Imagine losing 70% of your customers overnight……. 🤔 Or do we think someone might be being slightly economical with the truth? Let’s dig in! 🧵 1/12
Emma 💛💙🇩🇰🇬🇧🇪🇺 tweet media
English
438
2.9K
13.2K
3.7M
David Oswald retweetledi
Andreas Kogler
Andreas Kogler@0xhilbert·
WebGPU allows websites to use your GPU for general-purpose computations without asking for permission in the browser. To understand which attack vectors are possible using this interface, see our @ASIACCS2024 paper and try the PoC in your browser.
Lukas Giner@redrabbyte

Our new paper "Generic and Automated Drive-by GPU Cache Attacks from the Browser" has been accepted at @ASIACCS2024! 🎉 We show basic cache attack primitives on NVIDIA&AMD, and more complex attacks on NVIDIA. You can read it and try a tiny POC here ginerlukas.com/gpuattacks/.

English
2
6
30
5.1K
David Oswald retweetledi
nSinus-R (@nsr@infosec.exchange)
nSinus-R (@[email protected])@nSinusR·
Interested in low-level hacking, embedded systems, and trusted execution environments? We currently have a PhD opening, feel free to reach out for more information! Application deadline: April 1st 2024.
English
1
18
24
7K

Keşfet

@PreetKGillMP @brumdispatch @AadVanMoorsel @unibirmingham @SimonFosterPCC @CllrMajid @for_birmingham @crypto_carsten