• RT @timoreilly Amazon patents inferring religion from choice of wrapping paper http://t.co/MmCMx2OO << Over the "creepy" line #
• RT @kevinmitnick Did you ever want a blue box to make free calls? Now you can in the Apple app store. Search for "blue box". EPIC!!! #
• I wonder what Woz thinks of being able to get a blue box on his apple phone? (cc @kevinmitnick) #
• I'm super-happy to see @rmogull, @Beaker, @nselby & more arguing over quality & speed of breach disclosure. #AVeryNewSchoolChristmas :) #
• It's cool that Skype's preferences uses a segment of 1984 as the sample chat when showing that logs are kept. #
• Very interesting history of names at #28c3 http://t.co/dL1ztjmL /cc @_nomap @privacyint #
• RT @doctorow Adversarial stylometry data-set/research https://t.co/SPtQ72XX #28C3 < Totally rad! #
• RT @jeremiahg New blog post: "Terrified" http://t.co/AlorWtcd << Kudos on speaking up! #
• RT @Beaker Easy, because "outcomes" require analysis, modeling & understanding. Controls can be bought, installed & checked off #
• So has anyone written up an analysis of the GoD dump? (mm.txt) #
• RT @evilcyber I can probably narrow the GOOG stuff down to about a 6 month window in 2003. :) << There's stuff when Aleph1 was at SFocus #
• RT @argvee @evilcyber @adamshostack we got it down to 3. #

Powered by Twitter Tools

• Weekend NewSchool blog: "APT Didn't Eat our Theme. Adam Did." http://t.co/JDvLTayG (cc @RealGeneKim, @alexhutton ) #
• Really, TSA? The airline isn't allowed to auto-enter my freakin' date of birth? Has anyone calculated lifetimes wasted on red tape? #
• RT @BillBrenner70 Stop them before they predict again! http://t.co/7qzuTchU #
• I predict 90% of 2012 infosec predictions will contain no numbers and no dates. Prove me wrong, $100 to charity of your choice. #
• Predictions out of some group of 10 or more, like "vendors" or "SBN" or "previous published top N blogger list" #
• New School blog post, "Owning Up to Pwnage (Part 2)" http://t.co/qWISkasN #
• Quick poll: how long have your Elevation of Privilege playing sessions lasted? How did they end? #
• RT @josephmenn I wanted to let you know that my regular journalism will soon be easier to see. I am moving to Reuters http://t.co/RfHc5Shb #
• MT @451wendy RT @mckt_: <Citation Needed> <- this. And that pretty much sums it up for [infosec today] #
• RT @chriseng New blog post [video]: The Thought Leader… One Year Later http://t.co/V7nCqiQ2 << Chris, I'll respond in next hallway track #
• New blog: "The New School of Security Predictions" http://t.co/9iyo3mKf (cc @BillBrenner70 @jack_daniel) #
• New blog on the Emergent Chaos of the Pre-K Underground http://t.co/yb73FUJC #
• I'm on the "Tomorrow's Transactions" with @dgwbirch! Had a great time covering New School, Zero-Knowledge & Games. http://t.co/HKeKOVyW #
• "RT" @Walshman23 "Niels Bohr was right about predictions" http://t.co/lJpSFZdo #
• RT @bobmcmillan There's a flying remote-controlled shark @wired today. A holiday tradition? < You're living in @greatdismal's world #
• Update to "Top 5 Security Influencers" post to address critical questions from @beaker http://t.co/SUoTPZ6N (cc @oneraindrop again) #
• RT @Beaker Hey @securityincite the captcha on your comment form is barfing. I can't add my comment. < +1 :( #
• National Ass'n of Realtors discovers that public data is good, and their estimates were way off: http://t.co/zT1vrzMU #
• Happy birthday @Mortman! #
• RT @rcalo Local police issue vague/broad request to @Twitter for records on #occupy Boston. http://t.co/CCAZIaa9 (via @pogowasright) #
• I hear Boston police have also issued @twitter subpoenas for @paulrevere, @samadams & @johnadams http://t.co/CCAZIaa9 (/cc @amac) #

Powered by Twitter Tools

• RT @jeremiahg "HBGary not only didnt lose biz customers in the past year, but "got additional business" -Hoglund http://t.co/ap9pP39F #
• RT @bobblakley @Judgenap "Timid men prefer the calm of despotism to the tempestuous sea of liberty." Thomas Jefferson #
• Weekend blog "Threat Modeling & Risk Assessment" follows up on conversation with @451wendy http://t.co/iFCRCJW3 #
• RT @DennisF New podcast with @adamshostack. http://t.co/o2Y03gP0. Methods of compromise, New School and learning. #
• RT @wikileaks What they don't want you know: ACLU compares redactions to WikiLeaks documents made by the US State Dept http://t.co/51aIoNGw #
• RT @bobblakley RT @alexhutton Fox News still makes awesome charts http://t.co/l0qQ83kU < wow. HAND-CRAFTED lies! #
• RT @BreakingNews Seattle police use flash-bang grenades to disperse Occupy protesters at city's port – AP << WTF? #
• New blog "The output of a threat modeling session, or the creature from the bug lagoon" http://t.co/lqAcvL4e (cc @451wendy) #
• RT @lwosterman A large part of the TM problem is it's hard to figure out what you really need to do. IMHO, EOPs are a copout < yes; huh? #
• RT @lwosterman It's too easy to find EoP threats and they're not actionable. Every tampering is also an EoP. It's a basic flaw of STRIDE #
• RT @michael_howard Software Security Engineering jobs @ MSFT http://t.co/t68zLwSK #
• New blog "Outrage of the Day: DHS Takes Blog Offline for a year"
  http://t.co/YA9j1V1q #
• RT @michael_howard Software Security Engineering jobs @ MSFT http://t.co/t68zLwSK #
• Quick blog pointer to my podcast with @DennisF http://t.co/vYBjelIn Short, sweet and fun! #
• Hey Seattle, what's up with taxis being totally overbooked? #
• New blog, "Top 5 Security Influencers of 2011" builds on @oneraindrop http://t.co/SUoTPZ6N #
• MT normative Another TSA monkey Leaves Personalized Note In Passenger’s Bag (After Finding Marijuana) http://t.co/DRYgGSsw #
• RT @aloria: Things I'm not allowed to do at work, #1337 say "boom goes the dynamite" when I PoC a vuln < we're hiring http://t.co/t68zLwSK #
• RT @pmocek I can hardly wait for lunch to read the US DOJ's "devastating takedown" of the @SeattlePD http://t.co/q7YKBKPW #
• But @pmocek how will you keep your lunch down when reading about @SeattlePD's 20% use of unnecessary force? http://t.co/q7YKBKPW #
• So happy to hear my team's response to the insider question. #
• RT @sfmnemonic Have law degree, good reputation, writing skills, speaking skills and some fame in my field. Please hire me. #
• New NewSchool blog: "APT Didn't Eat our Theme. Adam Did." http://t.co/JDvLTayG #
• New NewSchool blog: "APT Didn't Eat our Theme. Adam Did." http://t.co/JDvLTayG (cc @RealGeneKim, @alexhutton ) #
• RT @quinnnorton Today #D17 is year anniversary of #Bouazizi trying to set himself on fire, accidentally catching the whole world instead. #

Powered by Twitter Tools

• RT @daveaitel Tests Show Most Store Honey Isn't Honey http://t.co/2oI3O6RK << Will anyone go to jail for fraud? #
• RT @jdp23 Look at the list of the FTC complaints — huge issues. And basically no consequnces to FB. So why should they change? #privchat #
• RT @threatpost $56 Billion Later and Airport #Security Is Still Junk – http://t.co/mUtNiMc7 – via @wired << a touching story! #
• White House unveils cybersec strategy incl "Inducing Change", "Developing Science Foundations" http://t.co/UN1usMVf (Could be New School-y) #
• New White House cybersec strategy "Inducing Change", "Developing Science Foundations" seems fairly New School http://t.co/TIIYNVok #
• New blog "Podtrac.com and listener privacy" http://t.co/KAZTGtg7 #
• "In Major Gaffe, Obama Forgets To Dumb It Down" http://t.co/bINRJom1 #
• This shows the success of our current "information sharing" "infrastructures": Data gathering for ssh attacks: http://t.co/nHe0hICE #
• MT @alexhutton I'll be on a webinar w/ @joshcorman in an 1/2 hour. It will only be fun if you join us http://t.co/mGUFOvMN #
• RT @nickm_tor The key idea from our field that we need most to export to other system designers is not IMO anonymity but unlinkability. #
• RT @alexhutton Best security/risk job description I've ever seen: http://t.co/yfRg0UX1 << this link is dangerous! (Dangerously New School.) #
• RT @_nomap Proud to announce that I'm officially a PhD. Now looking forward to new challenges! << Congratulations! #
• RT @techdirt Breaking News: Feds Falsely Censor Popular Blog For Over A Year, Deny All Due Process, Hide All Details.. http://t.co/SCJvhGAT #
• RT @marciahofmann Join me in fighting for the users! Become an @EFF member today and your donation will get a 4x match http://t.co/ISaGGamW #
• New blog: Outrage of the Day: Police Violence http://t.co/KJPoubWA #
• MT @josephmenn Very good books from many perspectives: Important 2011 Tech Policy & Law Books http://t.co/u5g41hF8 < Nothing new in infosec? #
• For bloggers – "Conbis" is stealing New School & other blog content. Their "about us" is Lorum Ipsum. http://t.co/SvYlU5f4 #
• RT @ehasbrouck I'd rather pay for Twitter than pay w/wasted time, distracting features that earn them $, & have them monetize info about me #
• New blog: "Threat Modeling & Risk Assessment" follows up on conversation with @451wendy http://t.co/iFCRCJW3 #
• Wow. IEEE won't even give me a citation without an account. http://t.co/l8AKCBEx Why do people let IEEE lock up their work? #

Powered by Twitter Tools

• New School blog "'Its Time to Learn Like Experts' by @jayjacobs" http://t.co/lnXTqyp8 #
• RT @dmolnar Help me shop for furniture http://t.co/rXxLrB4O #
• RT @moxie__ WhisperSystems has been acquired! http://t.co/M5i1g6D0 < Congratulations! I hope it leads to great things for Twitter privacy #
• RT @tsastatus A few new features, and a bunch of status updates, at http://t.co/5bat0tL0, more info on the blog http://t.co/5uoglCHT #
• New blog: "Telephones and Privacy" http://t.co/3tt9H4Cs #
• New blog: "We Robot: The Conference" http://t.co/XVjf2Cef #
• New bloggage: "Telephones and Privacy" http://t.co/3tt9H4Cs #
• RT @securityninja @realex_tracy everyone that walks past my desk has to play with the elevation of privilege cards, eye catching! #
• New blog: Big Brother Watch Report on Breaches http://t.co/GY5AoDMj (ht @PogoWasRight) #
• NPR has a story on FAA/SSA violations of Privacy act going to Supreme Court http://t.co/tK98Ycxt http://t.co/uXdEBwfI #
• RT @hvyboots: So apparently, Carrier IQ is on iPhones too http://t.co/of8dRsmb #
• RT @Jim_Harper Looking for Sen. Schumer's statement re: TSA tracking of cell phones. Anyone know where I can find it? http://t.co/U96pvG1U #
• New School blog post: "The Future of Work is Play" http://t.co/nI2FODm6 #
• RT @srbaker Film producers: if your film isn't on Netflix, I'll find it on BitTorrent. You might as well make some money on it. #
• RT @AdasBooks Today is such an exciting day! The first big news is that our webstore is now live! http://t.co/gsodfqY5 #
• RT @ggreenwald Surreal: Sen Feinstein had an amendment to say: you can't imprison US citizens w/o charges – it failed: http://t.co/sh8SjtCT #
• .@rmogull I don't think it's hypocrisy, I think people are tired of privacy disempowerment, confusion and the short end of the stick #
• Oops, violated my own medical privacy, darnit! Can I be in datalossdb now? :) #
• RT @lorrietweet Speaking today at Silicon Flatirons Privacy Economics event http://t.co/F8eNxKdf – live stream available < Yay, looks great! #
• RT @WeldPond It should be in the public's best interest to allow researchers to tell us what the software on our phones does. #carrieriq #
• Julie Cohen's comments are frames embedded in information systems is really well stated. #flatirons privacy economics #
• "Let's make sure the system is not set up to thwart consumer desire for privacy" Joseph Farrell @ silicon flatirons #
• "What we call disclosures are often when someone wants to say they disclosed it but they don't want you to know it" Joseph Farrell #flatiron #
• "We have effective disclosure, they're called ads" Joseph Farrell #flatiron discussing privacy "disclosure" #
• RT @liorjs Here's the livestream for Economics of Privacy Conf. http://t.co/dGVy35K4 Catch @ericgoldman, @paulohm, @rcalo, @laguarda, etc. #
• ~"Aleecia has a knack for stating the controversial in a non-controversial way" @rcalo #flatiron #privacy #
• Great question from @rcalo to venture capitalist Seth Levine: Do you worry about privacy as a risk in investing? #
• Did anyone mention the work on organ donation rates and defaults, tie it to privacy? #flatirons #
• UStream is reaching out to 14 different websites as I listen to the Silicon #flatirons event on Privacy economics http://t.co/4Do9K4qi #
• RT @kbcran #flatirons Thwarting facial recognition with Blade Runner makeup http://t.co/VrudCFVw #
• EyeLink has some really amazing & scary iris recognition tech. Way beyond what i thought was state of the art. Can't find link (@dmolnar?) #
• Peter Swire has a depressing view of the impact of Sorrel vs IMS #flatirons #
• Yay @hoofnagle for bringing up the compelled nature of speech in Sorrel. #flatirons #
• Gävle Goat Gambit Goes Astray http://t.co/Bup57but #
• Did he just say "You won't have Herman Cain to kick around anymore"? #

Powered by Twitter Tools

• MT @attractr Bejtlich: SEC Guidance Emphasizes Materiality for disclosing sec incidents: "new audience: shareholders" http://t.co/mlMts2Wd #
• RT @doctorow Just got to Occupy New School http://t.co/VjfVhFcN << I think Cory means something other than I would mean by this statement :) #
• NYTimes reports man bites dog, I mean "Screening Still a Pain at Airports, Fliers Say" http://t.co/vlPAH1n0 #
• New School blog post, "AT&T Hack Attempt" I'm looking for polling software http://t.co/d4YooBv9 #
• I missed a great opportunity in a recent podcast to say "controls implemented in a way that makes both auditors & attackers happy" #
• RT @oneraindrop @adamshostack Union of Attacker wishlist & Auditor checklist = Best Practices #
• RT @slaveSqueakAlot Remember when Westboro Baptist Church was picketing funerals/being asshats & they got pepper sprayed? Yeah, me neither #
• RT @risktical #riskhose pocast, Episode 14 http://t.co/5hF9YKlZ @adamshostack & 'feedback loops' – great content! @jayjacobs @alexhutton #
• New "blog" points to Risk Hose podcast #14 with me, @alexhutton, @risktical @jayjacobs http://t.co/8zaBLD8x #
• RT @CYBERLAWRADIO About to go live on CLBR with CMU Proff @lorrietweet on Why Johnny Can't Opt Out – on webmasterradio.fm #
• RT @briankrebs Apple took 3+ years, more than 1,200 days, to fix security hole exploited by FinFisher http://t.co/e4piLf1y #
• RT @josephmenn U.S. malls to track where shoppers are going, by way of their cell phone IDs. http://t.co/NLCHmK0I << Isn't this wiretapping? #
• Or a violation of the law that made it illegal to listen to cordless telephones? #
• RT @marciahofmann Carrier IQ backpedals on bogus legal threat, apologizes to security researcher. http://t.co/yY5o6JJk < Nice work Marcia! #
• RT @securityninja My new Elevation of Privilege cards http://t.co/S8VBeptS http://t.co/YyOMlBJU < Let me know how it goes? #
• Bummer. Our @HamiltonBeach coffeemaker croaked after just 4 months. Only option 2 get it fixed is more than a new coffeemaker #
• RT @evgenymorozov MI Tests Tracking Devices for Juveniles http://t.co/8TLnvRO7 -> do you like the idea of ankle bracelets on 9-year-olds? #

Powered by Twitter Tools

• RT @marciahofmann Carrier IQ backpedals on bogus legal threat, apologizes to security researcher. http://t.co/yY5o6JJk < Nice work Marcia! #

Powered by Twitter Tools

• RT @risktical #riskhose pocast, Episode 14 http://t.co/5hF9YKlZ @adamshostack & 'feedback loops' – great content! @jayjacobs @alexhutton #
• New "blog" points to Risk Hose podcast #14 with me, @alexhutton, @risktical @jayjacobs http://t.co/8zaBLD8x #
• RT @CYBERLAWRADIO About to go live on CLBR with CMU Proff @lorrietweet on Why Johnny Can't Opt Out – on webmasterradio.fm #
• RT @briankrebs Apple took 3+ years, more than 1,200 days, to fix security hole exploited by FinFisher http://t.co/e4piLf1y #
• RT @josephmenn U.S. malls to track where shoppers are going, by way of their cell phone IDs. http://t.co/NLCHmK0I << Isn't this wiretapping? #
• Or a violation of the law that made it illegal to listen to cordless telephones? #

Powered by Twitter Tools

• NYTimes reports man bites dog, I mean "Screening Still a Pain at Airports, Fliers Say" http://t.co/vlPAH1n0 #
• New School blog post, "AT&T Hack Attempt" I'm looking for polling software http://t.co/d4YooBv9 #
• I missed a great opportunity in a recent podcast to say "controls implemented in a way that makes both auditors & attackers happy" #
• RT @oneraindrop @adamshostack Union of Attacker wishlist & Auditor checklist = Best Practices #
• RT @slaveSqueakAlot Remember when Westboro Baptist Church was picketing funerals/being asshats & they got pepper sprayed? Yeah, me neither #

Powered by Twitter Tools

• RT @doctorow Just got to Occupy New School http://t.co/VjfVhFcN << I think Cory means something other than I would mean by this statement :) #

Powered by Twitter Tools