Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://infosec.exchange/users/HackingDave/statuses/109370571250605652">HackingDave :verified: (hackingdave@infosec.exchange)'s status on Saturday, 19-Nov-2022 21:57:01 JST</a><a href="https://infosec.exchange/@HackingDave" title="hackingdave@infosec.exchange"><img src="https://gnusocial.jp/avatar/32228-48-20221119125701.webp" width="48" height="48" alt="HackingDave :verified:" style="position: absolute; left: 0; top: 0;">HackingDave :verified:</a></section><article><p>Quoted in a story on the elevated risk at Twitter currently due to malicious insider on Wired. </p><p>Twitter has neglected security historically with a substantial amount of tech debt and bad practices through prior leadership - especially seen through the Mudge disclosures. </p><p>With the layoffs, exodus of the security team, and from what we’ve seen from Twitters security issues in the past - there’s definitely an increased risk for the potential of a breach or insider causing damage. </p><p><a href="https://www.wired.com/story/twitter-mega-breach-what-if/" rel="nofollow noreferrer">https://www.wired.com/story/twitter-mega-breach-what-if/</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/589259#notice-935673">In conversation</a><time datetime="2022-11-19T21:57:01+09:00" title="Saturday, 19-Nov-2022 21:57:01 JST">Saturday, 19-Nov-2022 21:57:01 JST</time> <span>from <span><a href="https://infosec.exchange/@HackingDave/109370571250605652" rel="external" title="Sent from infosec.exchange via ActivityPub">infosec.exchange</a></span></span><a href="https://infosec.exchange/@HackingDave/109370571250605652">permalink</a><h4>Attachments</h4><ol><li><article><header><div>Domain not in remote thumbnail source whitelist: media.wired.com</div><h5><a href="https://www.wired.com/story/twitter-mega-breach-what-if/">Here’s How Bad a Twitter Mega-Breach Would Be</a></h5><div> from <span>Lily Hay Newman</span></div></header><div>Elon Musk laid off half the staff, and mass resignations seem likely. If nobody’s there to protect the fort, what’s the worst that could happen?</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
HackingDave :verified: (hackingdave@infosec.exchange)'s status on Saturday, 19-Nov-2022 21:57:01 JST HackingDave :verified:
Quoted in a story on the elevated risk at Twitter currently due to malicious insider on Wired.
Twitter has neglected security historically with a substantial amount of tech debt and bad practices through prior leadership - especially seen through the Mudge disclosures.
With the layoffs, exodus of the security team, and from what we’ve seen from Twitters security issues in the past - there’s definitely an increased risk for the potential of a breach or insider causing damage.
https://www.wired.com/story/twitter-mega-breach-what-if/
In conversationSaturday, 19-Nov-2022 21:57:01 JST from infosec.exchangepermalink
Attachments
1. Domain not in remote thumbnail source whitelist: media.wired.com
  Here’s How Bad a Twitter Mega-Breach Would Be
  from Lily Hay Newman
  Elon Musk laid off half the staff, and mass resignations seem likely. If nobody’s there to protect the fort, what’s the worst that could happen?

Public

Embed Notice

HTML Code

Corresponding Notice