Recent searches

No recent searches

Search options

Only available when logged in.
mastodon.world is one of the many independent Mastodon servers you can use to participate in the fediverse.
Generic Mastodon server for anyone to use.

Administered by:

Server stats:

8.1K
active users

mastodon.world: AboutStatusProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.4.0

#projectzero

0 posts0 participants0 posts today
Replied in thread
*
Kevin Karhan :verified:

@reverseics Just do it like #Google #ProjectZero and tell them straight up in their face:

youtube.com/watch?v=F_XCDu6GQt4

I was nice once, now I won't! IDGAF what you need to do to fix it. Details will be public in 90 days. Go fuck yourselves!

And basically prepare everything to be ready in precisely to the second 90 days from the moment mail was sent to them.

YouTubeAVATAR 2 | Quaritch "I'll be nice,once...then I won't" #avatar2 #avatar #avatarthewayofwater #shortsBy MR.zer0
#ITsec#InfoSec#OpSec
Continued thread
Claudius Link

Googles #ProjectZero follows a 90 days disclosure deadline policy. Meaning they will publish a vulnerability 90 days after informing the vendor (or 30 days after the patch is published)

Sometimes they grant an additional 14 days grace period. Leading to a 104 days fix period.

googleprojectzero.blogspot.com

googleprojectzero.blogspot.comVulnerability Disclosure FAQ Published: 2019-07-31 Last updated: 2021-11-29 Project Zero follows Google’s vulnerability disclosure policy  on all of our vulnerab...
gtbarry

Google Claims World First As AI Finds 0-Day Security Vulnerability

AI has discovered a previously unknown zero-day exploit in widely used real-world software. It’s the first example, according to Google’s Project Zero and DeepMind, the forces behind Big Sleep, the large language model-assisted vulnerability agent that spotted the vulnerability.

#Google #ProjectZero #DeepMind #BigSleep #ArtificialIntelligence #AI #LLM #security #cybersecurity #zeroday #hacking

forbes.com/sites/daveywinder/2

Forbes · Google Claims World First As AI Finds 0-Day Security VulnerabilityBy Davey Winder
Gnomer

I’m looking for a feed that aggregates recent reverse engineering and vulnerability centric security writeups, like the ones posted by Google project zero. I know there are many different security firms and academics that post these kind of articles now and then, but I’m having a hard time with discovery as every news site or feed I find is focused on cybersecurity threats and CVEs, or simply just malware actor reports.

Does anyone have something that fits the bill?
#reverseengineering #googleprojectzero #projectzero #vulnerability #vulnerability_research

8Bit | :linux: :godot: | 🍶🦊

Finished Chapter 2 of #ProjectZero/#Fatal Frame II - #Wii Edition (getting tired of always writing EU and US titles).

Oh boy I remember why I liked the game so much. Also getting better with the Wii controls - although I still wish the game would get a Remaster. I don't mind motion controls, but the lack of a second thumbstick is cumbersome. And the devs knew it. A lot of the ghosts are REALLY slow.

*
Dan Goodin

Google has removed a video posted by academic researchers demonstrating how a newly discovered side channel in Apple's A- and M-series CPUs can be used to steal a password.

I thought for sure the removal was a mistake, but a Google representative told me the video was removed for violating a term of service barring "demonstrating how to use computers or information technology to steal credentials, compromise personal data, or cause serious harm to others."

The video, demonstrating important research by @genkin, @YuvalYarom , @themadstephan and jason kim, is here:

onedrive.live.com/?authkey=%21

Just to underscore how arbitrary and patently asinine Google's ToS enforcement is here, two additional videos the researchers posted demonstrating the same side channel remain available.

I wonder how researchers from #projectzero feel about this. Is there any chance any of them can intervene?

onedrive.live.comOneDrive
Adrián 🎙️TERROR EN LÍNEA🎙️

#presentacion hola, soy Adrián. Soy profesor de Lengua y Literatura y también soy escritor.
He tenido la suerte de publicar varias novelas y ahora llevo un pódcast sobre videojuegos de terror llamado #Terrorenlinea. Me gusta la cultura en general y, dentro del ocio interactivo, cualquier videojuego de terror (#residentevil , #condemned, #projectzero, #silenthill, #aloneinthedark, etc) por supuesto, también #tombraider . Espero conocer a gente interesante. Un saludo!

Marco Ivaldi

In mid-2022, #ProjectZero was provided with access to pre-production hardware implementing the #ARM #MTE specification. This blog post series is based on that review, and includes general conclusions about the effectiveness of MTE as implemented, specifically in the context of preventing the #exploitation of memory-safety #vulnerabilities.

googleprojectzero.blogspot.com

googleprojectzero.blogspot.comSummary: MTE As Implemented By Mark Brand, Project Zero In mid-2022, Project Zero was provided with access to pre-production hardware implementing the ARM MTE specifi...
TrendingLive feeds
About