Jake Williams Profile picture
Sep 15, 2020 5 tweets 2 min read Read on X
I've had a few DMs asking me if I support censorship and how I reconcile free speech with asking YouTube to take action on this content.

The original context was that @Viking_Sec was being algorithmically driven to this content and THAT is concerning by itself. 1/
This is also several degrees of bad. It's not "swastika might mean something else" (what???) when you are putting someone wearing a Jewish symbol in an oven. I don't think this has any place on the platform, but that's up to the platform and advertisers who support it. 2/
On the broader question of censorship, content platforms have a choice for what they wish to allow.

But they have a responsibility to not push offensive and radicalizing content to those who don't ask to see it. Driving dangerous content because people engage is unacceptable. 3/
I feel like we're back to ethics in development again. If the goal of the algorithm is to drive maximum engagement (likes, shares, subscribes) then serve whatever does that.

But if the goal of being decent is important too (perhaps more important), maybe adjust the algo? 4/
Because on YouTube, you never seem to be more than a few clicks away from a conspiracy theory or hate speech.

Case in point, I fell asleep to @LastWeekTonight a few months ago and woke up to some seriously anti-Semitic content. That was driven by autoplay, not preferences. /FIN

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Jake Williams

Jake Williams Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @MalwareJake

Sep 7, 2023
Fantastic coverage of the Microsoft Storm-0558 post mortem from @lilyhnewman.

A few thoughts:
1. @msftsecurity is amazing. Investigations like this are amazingly complex and performed under pressure that few in the field will ever experience. 1/
wired.com/story/china-ba…
And long before the investigation, there's the planning. Ensuring you have the data, with the retention, to perform an investigation like this doesn't happen by accident. It requires planning. And it also requires diplomacy. *Lots* of diplomacy. 2/
Even at an organization that knows it's a target, there will always be discussions of "how much retention is enough."

Any incident response consultant will tell you this is a LOT of telemetry with impressive retention. It's not cheap to maintain this. 3/
Read 11 tweets
Jun 18, 2023
If you're starting out in security and find the breadth of stuff you "need to know" daunting, I want to give you some perspective:
1. The field has broadened - dramatically. The "baseline knowledge" grows every year. Anyone saying otherwise is lying or uninformed. 1/
2. You don't have to "know everything" to make a significant impact.
3. All the people you are looking up to now stand on the shoulders of giants, whether they admit it or not. I know I sure do.
4. Stop measuring yourself by what you don't know. You'll never know it all. 2/
5. This is a field where you need to be comfortable with lifetime learning. Your skills will quickly become irrelevant (despite Microsoft's best efforts) if you stand still.
6. I spend at least an hour a day reading/practicing new skills. Still. It's my antidote to stagnation. 3/
Read 5 tweets
Dec 5, 2022
More notes: I'm aware of the CBS story stating that their experts reviewed a copy of the Biden laptop with no modification. I presume they received their copy from a different source, since their findings are inconsistent from mine and @matthew_d_green. 1/
cbsnews.com/news/hunter-bi…
In the image I examined, it was clear from filesystem timestamps alone that files and folders had been opened and created long after it was abandoned at the shop. I'm confident any forensic analyst would see that, so it's easy to conclude we're looking at different evidence. 2/
I will also note that there's no forensic software that is built to identify intentional offline modification by a sophisticated adversary. That requires a lot of in-depth analysis and cross-view validation we don't have enough characters for here. 3/
Read 5 tweets
Dec 3, 2022
Regarding the Hunter Biden forensic analysis:
1. I personally am not a fan of the fact that it took so long to get an independent analysis of the data.
2. I wish the evidence had been made available, without strings, to reputable media organizations in 2020.
3. It wasn't. 1/n
When political operatives shop evidence of a "bombshell story" weeks before an election, but dictate publication timelines as a condition of providing the evidence, skepticism is fully warranted.

Publishing without validation in that case is journalistic misconduct IMO. 2/
Whether you agree with what Twitter did in suppressing the story is a separate issue from the integrity of the evidence.

Anyone discussing the @nypost stories without acknowledging evidence was manipulated BEFORE being passed to the NY Post is being disingenuous. 3/
Read 12 tweets
Jul 11, 2022
Your airline pilot started in a single engine Cessna. Nobody called it gatekeeping. And before that, they learned lots of "mostly irrelevant" facts in ground training.

Cyber is one of the only fields where we pretend that skipping the basics is okay to put butts in seats. 1/4
Do you really want an incident responder that doesn't understand the implications of a "non-standard" subnet mask (whatever that actually means, don't get me started)? Sure, it's only like .1% of IR where that's relevant, but just highlighting an example. 2/4
I don't have the answers for "how much knowledge is enough" for a given task. But given the number and cost of ongoing security incidents, I suspect that if we don't answer the question, regulatory (read licensing) boards will answer for us. 3/4
Read 6 tweets
May 29, 2022
The new #msdt 0-day can be mitigated by removing the protocol handler for ms-msdt (reg delete hkcr\ms-msdt /f).

Disclaimer: I haven't checked for impacts in a large production environment, but seems better than being exploited. MSDT is just a diagnostic tool, so likely safe.
When I say "haven't tested" I mean for second order impacts. I've tested that this is 100% effective as a mitigation.
FYSA. I haven't seen this on my test system yet, but in any case I'm still okay recommending removing the handler until I have another mitigation. Considering there will likely be a patch for this released long before relicensing is required.
Read 4 tweets

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us!

:(