Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
Alex Weinert Profile picture
Alex Weinert
@Alex_T_Weinert
VP Director of Identity Security at Microsoft. he/him.
Dec 12, 2021 24 tweets 7 min read
Ok, so here's my take and recommendations from Identity Security lens on the #log4j2 vuln impact for #zerotrust and #AzureAD. TLDR: It's time for "EXTREME ZT: LPA ALL THE THINGS!" <thread> The simple fact is that for whatever reason, we're getting an amazing look at what happens when responsible disclosure doesn't go to plan and the attackers and the defenders get vuln info at the same time. As a defender, you are certainly in a deep assessment/patching phase...
Aug 26, 2018 7 tweets 2 min read
My first Twitter rant: It is best to use credentials which were designed to be credentials. For all the beauty and genius and impact of SMS, it was never designed as a secure mechanism or to be a credential. Use push notifications. Passwords are designed to be a credential but no mechanism stands the test of time forever. Mechanisms for compromising your password are varied and well honed. They mostly devolve to asking nicely or guessing. Passwords aren't enough.