Share this page!

Troy Hunt Profile picture
Twitter logo
Oct 26 4 tweets 2 min read
Every year at this time (except the last 2 🦠), our city gets turned into a race track for the #GC500, with pit lane down the end of our street. 3 days of race cars, jet flybys and loud engines. It’s perfect 😊
View from the ground, what a location! 🏎️
Supercars to the left, this to the right 😍 Image
Want to smoke? There’s a special pen for you near the toilets (but you can’t take your beer in there). Image

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Troy Hunt

Troy Hunt Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @troyhunt

Troy Hunt Profile picture
Oct 22
Losing my mind a bit with the @bigassfans app. Connect to their broadcast network, finds the device, join it to my network then… nothing. 3 different fans, exactly the same experience. 1/n ImageImageImageImage
Fans are definitely on the network as they all show up in @Ubiquiti so join is successful. They're on the 2G band (I believe that's all they support) and have stable connections. 2/n Image
The @home_assistant Haiku integration also picks them up and successfully controls them so they're *definitely* on the network and communicative. 3/n Image
Read 33 tweets
Troy Hunt Profile picture
Oct 6
I love that part of the Microsoft Security Score for Identity in Azure improves your score if you *don't* enforce password rotation, what a sign of the times! Who out there still works somewhere that forces rotation (because "reasons")? Image
Geez there’s some debate about this one! Mostly support but also some misunderstanding so let’s fill some gaps:

Firstly, password managers don’t solve this problem, not when you’re talking about the credentials to logon to your PC. That’s a rare case where you need to type it…
…unless you’ve gone passwordless via security keys, biometrics etc. Clearly this negates the need to use the password with such frequency thus reducing the opportunity for compromise. There may still be a password (e.g., fallback from biometrics), but exposure is much less.
Read 6 tweets
Troy Hunt Profile picture
Sep 26
I’ve got a lot of mixed feelings on this: google.com/amp/s/amp.abc.…
Firstly, good stuff re earlier notification. Data such as what was exposed by the #OptusHack is most valuable when it’s freshest because impacted parties aren’t aware and haven’t taken appropriate action.
But banks are only a small part of the picture and arguably, much more damage is done when email and social accounts are compromised. But there’s not the same regulatory controls over them and it’s easier to quantify financial loss rather than privacy loss.
Read 9 tweets
Troy Hunt Profile picture
Sep 4
Well this is going to be interesting - has @tiktok_us been breached?
With the preface that all this is "alleged" at this time, there's a post on a popular hacking forum from 12 hours ago making some pretty major claims:
"There's another DB in the Oracle server we're in, it's called "cabinet cloud" and it's 34GB in total. No idea why it's here and what it's for, but we're releasing it because we don't think we'll need it.
Here's the video of the tables:"
Read 23 tweets
Troy Hunt Profile picture
May 27
Waiting for me on arrival home was a care package from @Ubiquiti. Let’s start unboxing and full disclosure: they’ve sent me a bunch of bits (including these ones) since I spent up big, re-did my whole house and decided I loved the gear: troyhunt.com/ubiquiti-all-t…
So, what is a “G4 PTZ”? It’s the top of the tree camera that sits above the G4 Pro (4K cam used for the photo in my tweet of my back yard just now) and looks totally kick arse ui.com/camera-security
It comes in a bag. And a *very* heavy base, must be several kg right there.
Read 46 tweets
Troy Hunt Profile picture
May 27
Anyone seen a link to this data? Or the Telegram channel in question? DMs are open if you can help. vpnmentor.com/blog/mgm-leake…
Thanks to the folks that reached out and sent this to me, I now have it. Almost 25M addresses so substantial, but one burning question: is this part of the incident from a few years ago? Or a discrete breach? Update the old one or load a new one? haveibeenpwned.com/PwnedWebsites#…
I've concluded that this is highly likely to be the same incident from 2019. The total row count is *identical* to what was being sold years ago: zdnet.com/article/a-hack… Image
Read 10 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

Send Email!

Email the whole thread instead of just a link!

Separate emails with commas

:(