I just bought a 2024 Chevy Tahoe for $1. pic.twitter.com/aq4wDitvQW

— Chris Bakke (@ChrisJBakke) December 17, 2023

Any network troubleshooting tips for this? pic.twitter.com/GVDPAzHCBG

— TRÄW🤟 (@xtremepentest) December 16, 2023

FOG IS JUST GOTH AIR pic.twitter.com/wTDDWd3IaC

— Daniel Pietersen (@pietersender) December 16, 2023

I cannot get over this salesdude filing a Freedom of Information request with THE BRITISH LIBRARY asking if they have "any paper documents in storage" pic.twitter.com/UGdz2SR00f

— Jonty Wareing ⍼ (@jonty) December 16, 2023

As a security veteran since 1997 (25 years) I concur.

Good system architecture tolerates failures in individual components. https://t.co/RCVjpkk9sv

— Halvar Flake (@halvarflake) December 16, 2023

The "Ship of Theseus" article has been edited 1792 times since it was created in July of 2003. At present, 0% of the phrases in the original article (seen below) remain. pic.twitter.com/MzUUqfpiHK

— depths of wikipedia (@depthsofwiki) December 15, 2023

Thank you 👍🏻 pic.twitter.com/l2MBYvjVEr

— Paddy Raff (@paddyraffcomedy) December 16, 2023

You can’t hurt me, you’re not one of my students asking me if we had electricity when I grew up in the late 1900’s

— Ghostface Kryllah (@kryzazzy) December 16, 2023

A vulnerability in the way Google implements OAuth was disclosed publicly today and is still not fixed.

It can let employees retain indefinite access to applications like Slack and Zoom after they're offboarded.

Let's dig in:

— Matt Johansen (@mattjay) December 16, 2023

Question.

Anyone who's using oauth rather than SAML for auth (common, due to the SSO tax) must already off-board users from the service provider rather than identity provider due to how desktop apps stay signed in.

You're saying this degrades SAML users to the oauth model?

— dekushrub@infosec.exchange (@Deku_shrub) December 16, 2023

Just checking that "email_verified" is "true" is not enough? I thought it was "false" for google account where emails were not hosted by google...

— Guillaume Genty (@Elektordi) December 17, 2023

Im trying to parse the examples in the blog post but I assume they do not work for Google Workspace orgs? Also in your yahoo example, the user has to already be able to receive email at that email address…

— Alex Chekholko (@RHAlexander) December 17, 2023

Predatory Sparrow “hacktivist” group says it launched a destructive cyber attack affecting the “majority of the gas pumps throughout Iran”

It’s a “response to the aggression of the Islamic Republic and its proxies in the region. Khamenei, playing with fire has a price” https://t.co/ZCZubiOHMt

— Dmitri Alperovitch (@DAlperovitch) December 18, 2023

watching star wars films in the wrong order is a wookie mistake

— Han Solo Cup (@paminski) December 16, 2023

rare and powerful esoteric physiognomies from the ancient world pic.twitter.com/6gFpWoWBbK

— Nemo (@thecaptain_nemo) December 17, 2023

warrior, priest, rogue, wizard

— kache (yacine) (KING OF DING) (@yacineMTB) December 17, 2023

THREAD: Lured by a fake job, a man was kidnapped and trapped in a labor camp by a Chinese scam gang. He worked for his captors for six months while secretly sending me photos, videos and financial records from inside. Then, he went silent. https://t.co/HYD6ye342X

— Isabelle Qian (@QianIsabelle) December 17, 2023

Something tells me this will be used as a good analogy of how to not design a robust and secure product at the start of the design phase, and the impact such lack of security has https://t.co/5JR9NIU5Ci

— Daniel Cuthbert (@dcuthbert) December 18, 2023

Range Rovers have become a magnet for thieves, sending insurance costs skyrocketing and resale prices tumbling.

Via @BloombergUK pic.twitter.com/m2ZqDzo4ln

— London & UK Street News (@CrimeLdn) December 17, 2023