Profile picture
, 5 tweets, 1 min read
My Authors
Read all threads
So this thing. Which leads me to ask "WHERE THE F*** HAS CveEventWrite() FUNCTION BEEN FOR THE PAST 30 YEARS"?????
Sorry for the ALL CAPs but now that they came up with it, in hindsight it looks pretty obvious that we should've been having this all along.
And not just Microsoft, but something we need to add everywhere, including Apple, Linux, Gnu, other open-source projects. We shouldn't just fix vulns, but add detection for attempted exploitation.
I mean, back in the day, Apache added logging for /cgi-bin/phf, because every web scanner looked for it, so it was an easy way to detect when you were being scanned. So it's not a new concept.
But with 20 years of hindsight, APT operators, massive data breaches, Splunking, and so on, it's become obvious this needs to be the norm.
Missing some Tweet in this thread? You can try to force a refresh.

Enjoying this thread?

Keep Current with Rob ☃️ Graham

Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

More from @ErrataRob see all

Profile picture
Rob ☃️ Graham
@ErrataRob
Yes, yes, but:
Infosec: "Nobody but us can understand our field, so listen to us explain it to you."
Lawyers: "Nobody but us can understand our field, but I'm not your lawyer and won't explain it to you."
It's like Aaron Swartz:
Infosec (quoting DoJ): "Aaron faced 200 years in prison".
Lawyers: "That's a fantasy, that's not what he really faced, read the sentencing guidelines".
Infosec: "So how many years did he face?"
Lawyers: <silence>
Lawyers: "pfft, this California law doesn't say what you think it does"
Infosec: "Okay, so explain to me what it does say"
Lawyers: "I'm not your lawyer"

Read 7 tweets
Profile picture
Rob ☃️ Graham
@ErrataRob
I don't believe this Reuters story that Apple dropped pans for encrypted backups because FBI. Encrypted backups are a useability nightmare that means customers would lose data.
reuters.com/article/us-app…
A "backup" is what you resort to after some catastrophic failure, such as losing your phone and forgetting your password. Without encryption, Apple can still recover your data. With encryption, it's no longer a backup, and your data is lost.
I don't know how to have an encrypted iCloud backup that is truly a backup in case of catastrophic failure. Maybe some cryptographer out there knows how to do this, if so, they can explain it to me and prove me wrong, and I'll gladly retweet them in this thread.
Read 7 tweets
Profile picture
Rob ☃️ Graham
@ErrataRob
There is a clear parallel here, @ggreenwald is being accused of roughly the same thing as Assange, that they "directly assisted, encouraged and guided" getting the leaks they published.
@ggreenwald When it's them, it's obvious that Brazil is a corrupt government prosecuting leaks showing their corruption.

When it's us, the situation is more nuanced and complex.
@ggreenwald I think there's objective evidence that it really is more nuanced. That Assange's prosecution happens under both Obama and Trump show that our prosecutors really are acting independently rather than pressured from the top.
Read 7 tweets

Related threads

Profile picture
The Dirty Truth “Josh”
@AKA_RealDirty
Tonight’s @seanhannity Thread.

@ChadPergram explains what’s going on in the Senate trail.
#PencilNeckSchiff May have mischaracterized Parnas evidence, document show. @RepDougCollins so this is no surprise because this is what he does.
.@RepDougCollins this abuse of power could be anything.
Read 5 tweets
Profile picture
The Cabal Is Sweating BIGLY Stu Cvrk
@STUinSD
Thread: News Summary from the Week that Was (22 – 28 December)

1. This is my weekly summary of news that the legacy media and Democrats have obfuscated for partisan political reasons.
2. Let’s start off with more on former FBI Director James Comey, courtesy of the Horowitz report:

<quote>
2A. Details revealed in the Justice Department’s inspector general report raise immediate questions about disgraced ex-FBI Director James B. Comey’s repeated decision to push back against requests from President Donald Trump ….
Read 106 tweets
Profile picture
livetweeter, I barely know her
@shutupnochi
Morgana's gender is Car
LET ME WATCH MY DVD MORGANA
Me when I do literally anything
Read 888 tweets
Profile picture
FaceTheCuban© SirLRO🎈{Interactive}
@FaceTheCuban
...#Positivity is in each & everyone of us. Let it flow more often, makes a better day. #SirLRO
...#Positivity ~none said it was easy, all you have to do is one step at a time. I know you can, keep going. #SirLRO
~ #Positivity there is no need for deprecating others with words, when it calls for~there is a need for compassion, it’s in you, #SirLRO
Read 246 tweets
Profile picture
Tracybeanz
@tracybeanz
You can watch the stream for the hearing here: Thanks @ScottAnthonyUSA !! My thread will continue below.
In case of problems on that stream, please go here:
And she showed.. Off we go...!
Read 327 tweets
Profile picture
Mark Grondin
@SpectrumPulse
I feel like driving up some controversy, so how about a thread of Hot Takes/Unpopular Opinions! You know the drill, one like = one take/opinion.

Start easy: the blunt awkwardness/cringe of 'Blurryface' is the point of taking the piss out of Tyler. I stand by my light 9/10.
2. I don't hate Nickelback's 'Dark Horse' - it's easily a record for them at their most tasteless, but the frat-bro swagger of it helps some of their better hooks.
3. 'Fireflies' by Owl City is a genuinely terrific song that captures precocious, starry-eyed wonderment better than few others in the 2000s.

It is SPECTACULARLY lame, but that's why it works.
Read 177 tweets

Trending hashtags

#Avatar #Friendships #HongKongProtest #HOPE #Gif #Vinca #Coconuts #Fútbol #Looking #SirLRO #Nose #Up #NewAge #NationalComplimentDay #Iraq #NOW #HappyMothersDay2019 #FísicaThreadBr #Life #Night #Unroll #MaziTips #CITIZEN #Fly #CarrieLam
Follow Us on Twitter!

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!