Profile picture
Ivan Fratric
@ifsecure
, 5 tweets, 2 min read Read on Twitter
A more serious take on this: What makes me sad is (once again) undermining end-user security to the benefit of corporate dinosaurs who can't be bothered to adapt. The IE Compat View certainly has a long history of abuse, but let's also take a look at some other examples: (1/4)
In 2017 MS disabled VBScript in IE, but left it running in Intranet and Trusted Sites zones for the benefit of said dinosaurs still using it. Guess what? By leaving it in, it could be abused from Internet zone as well: bugs.chromium.org/p/project-zero… and bugs.chromium.org/p/project-zero… (2/4)
Last year, MS disabled Flash in Edge by default, but left a whitelist of "trusted" sites. Guess what? bugs.chromium.org/p/project-zero… (3/4)
But surely, this time it is going to be different. This time it is going to be done right and there will be no way to abuse the whitelists or escape the Intranet zone. Surely. (4/4)
And one more: Empirical evidence suggests that attack surface reduction is one of the most impactful (if not *the* most impatful) things that can be done for product security. Going the opposite way is... disappointing.
Missing some Tweet in this thread?
You can try to force a refresh.

Like this thread? Get email updates or save it to PDF!

Subscribe to Ivan Fratric
Profile picture

Get real-time email alerts when new unrolls are available from this author!

This content may be removed anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

More from @ifsecure see all

Profile picture
Ivan Fratric
@ifsecure
bugs.chromium.org/p/project-zero… is another JScsript issue (like 1506) where a JScsript variable (Note: a variable itself, not a backing object) is not properly tracked by a garbage collector. This type of issues is interesting for 2 reasons:
1. These bugs are very difficult to find by fuzzing because an entire block of variables needs to get freed to observe a crash. We did find it by fuzzing, but only after a pretty large amount of iterations.
2. It gives you a very powerful exploitation primitive that can be reliably exploited for arbitrary read/write by triggering the bug only once.
Read 5 tweets

Related threads

Profile picture
The Reckoning 💥
@sethjlevy
1/ I think it’s time to update the Comey flipped theory in light of all the new information that has come to light recently.
2/ Let’s start with clarifying what this could mean about Comey. Flipping doesn’t make you a good guy or an ethical guy. It doesn’t mean he’s a white hat. Murderers flip and help prosecute other bad guys. It doesn’t absolve them. People flip to save their ass.
3/ Next it’s important to keep in mind the political environment during the transition. Democrats and Hillary were openly blaming Comey for her loss. Besides Trump he was their most hated villain. Screaming about McCabe’s corruption would’ve been drowned out as partisanship.
Read 15 tweets
Profile picture
Robert E Kelly
@Robert_E_Kelly
Does it unnerve anyone that the same mistakes the Trump White House made before last year's Singapore summit with Kim Jong Un are being made all over again? Once again, w/ just days to go, T's best pitch for the summit is literally 'we'll see what happens.' I.e., Trump has no /1
idea what's coming and is just winging it. Once again, T himself has done no prep; he clearly knows nothing more about Korea, nukes, or missiles than 10 months ago. Once again,neither Trump nor his natsec team have given any kind of programmatic address to inform the public of /2
even the widest possible parameters of what kind of deal we might strike. So the rest of us are in the dark too. Once again, Team Trump is negotiating the final statement with only days to go before the meeting. Once again, Trump is giving blustery press conferences claiming /3
Read 14 tweets
Profile picture
Red Dot Oz
@RedDot_Oz
#SP2019 Tommy Koh opens the first session with a speech on recent top foreign policy developments globally.
#SP2019 Tommy Koh: what do we call this new dynamic between the US and China? Containment? Konfrontasi?
#SP2019 Wang Gungwu is now speaking of Singapore in the region, and how China sees the region.
Read 99 tweets
Profile picture
Chad Loder ❇️
@chadloder
This is the best thing on Twitter this morning. I see too many security products trying to *replace* human-to-human interaction - there’s a good chunk of security and privacy that’s about *people*.

Let’s make more products which help people STOP, collaborate, and listen 😝
Forgetting about the “people” part of security is why we’ve heard “GRC is dead” for the last 10 years. We’re on “GRC 4.0” now and it *still* sucks.

GRC tools like Archer are designed for Process and Technology but forget about the poor People who have to use that dumpster fire.
We still have new vendors trying to design single-pane-of-glass “CISO dashboards”, meanwhile *very* few security companies are truly focused on people (not just security people) inside of organizations.

@duosec is one of the few companies who has focused on people. @habitu8 too
Read 10 tweets
Profile picture
K O'Shea - Same Bat Time, Same Bat Channel
@osheamobile
oh no

guys

batman forever and batman and robin are on netflix

you know what this means
Mute or follow the hashtag #KWatchesBatman, which I should have been using before but oh well
Previous thread: Batman (1989) #KWatchesBatman
Read 107 tweets
Profile picture
Ugo Obi-Chukwu
@ugodre
Good evening everyone. Welcome to corporate stories with @Nairametrics.

This is part 2 of the Oando story.

Thread starts here
If you are just joining this story for the first time, we suggest you first read Part 1 of the thread here..

1. Flashback: After the merger, Jite, one of the founding members of Ocean and Oil Ltd, was now also the MD of Oando Energy Services
Read 114 tweets

Trending hashtags

#advertising #SP2019 #FutureProvesPast #bodylanguage #BlackTwitter #FakeNewsMedia #FISAabuse #Slavery #TAKEOVER #freedumbism #security #Nonverbal #NinoyAquino #KanyeSyllabus #FGM #DonaldTrump #thebuttsmatch #Quran #scam #Covingtonkids #infosec #safety #mediabias #KanyeWest #TawanaBrawley
Follow Us on Twitter!

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!