matt blazeVerified account

@mattblaze

Scientist, safecracker, writer, professor. 280 is the new 140 is the new 1536.

Washington and elsewhere.
mattblaze.org/blog/
Joined March 2009
546 Photos and videos Photos and videos

You may also like

·

Tweets

You blocked @mattblaze

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @mattblaze

  1. Pinned Tweet
    Jan 7

    So I have some news. After 14 amazing years at Penn, I'm moving to a unique new gig at Georgetown. Starting this semester, I'll be the McDevitt Chair of Computer Science and Law, where I'll focus on interdisciplinary research and teaching that bridges CS and law/public policy.

    283 replies 230 retweets 4,653 likes
    Show this thread
    Show this thread
    Undo
  2. 10 hours ago

    I’m seeing a bunch of people tweeting “don’t use Uber or Lyft all day tomorrow; they’re on strike”. Apparently it’s not so simple. Drivers in some cities are only striking during certain hours (eg, AM rush). Unfortunately, there doesn’t seem to be a single authoritative schedule.

    8 replies 2 retweets 6 likes
    Undo
  3. 10 hours ago

    Appreciate all the people taking the time to explain what Tor is to me.

    31 replies 12 retweets 309 likes
    Undo
  4. 11 hours ago

    Just for the record, if you’re looking to contact the CIA (or any other sensitive org) and you don’t want someone monitoring your Internet to find out, install Tor BEFORE you go to their web site.

    Our onion site is one of several ways individuals can contact CIA. For more details, refer to the Report Information tab on either our website or onion site. …
    Show this thread
    6 replies 14 retweets 77 likes
    Undo
  5. 11 hours ago

    Apropos nothing in particular, extravagant security claims made in press releases should be treated with extravagant caution.

    3 replies 7 retweets 24 likes
    Undo
  6. Retweeted
    11 hours ago
    Replying to and

    I would feel much more comfortable with such claims if there were detailed architectural information published.

    2 replies 3 retweets 9 likes
    Undo
  7. 13 hours ago

    The smallest QC3 battery packs I've found are 10000 mA/h, which is too bulky and heavy for the little tool kit in which my (otherwise quite nice) TS80 lives. Would like something smaller, even at the expense of capacity

    2 replies 1 retweet 5 likes
    Show this thread
    Show this thread
    Undo
  8. 14 hours ago

    Anyone know of a small & lightweight (e.g., 5000 or 3000 mA/h) USB battery pack that can definitely power the TS80 soldering iron (which wants QC 9V/2A). Actual firsthand knowledge, rather than speculation, please.

    10 replies 5 retweets 23 likes
    Show this thread
    Show this thread
    Undo
  9. 14 hours ago

    It's natural that the people and agencies who find and use exploits would want to keep them secret forever. That's why we need a strong, meaningful policy process that considers other equities (namely, protecting the rest of us when others inevitably re-discover them).

    3 replies 3 retweets 28 likes
    Show this thread
    Show this thread
    Undo
  10. 15 hours ago

    This is why we advocated in "Lawful Hacking" that exploits be understood as part of an ongoing lifecycle, culiminating in disclosure.

    1 reply 6 retweets 25 likes
    Show this thread
    Show this thread
    Undo
  11. 15 hours ago

    Exploits are, in effect, "secret weapons", with all that that implies: once deployed, they don't stay secret for long (especially when used against sophisticated targets). Once this happens, only sensible policy is to disclose/fix underlying vul.

    8 replies 53 retweets 94 likes
    Show this thread
    Show this thread
    Undo
  12. May 6

    So ⁦⁩ just launched a store credit card that gives you a discount equal to your sales tax. It looks like it could be a good deal, but only if you pay it in full each month. Otherwise, the crazy high 30% interest eats any savings within a couple months.

    9 replies 14 likes
    Undo
  13. May 6

    Folks asking me to comment on several new tools/laws/developments on voting that have been making news: I’m holding off until I have enough detail to have something to say.

    2 replies 3 retweets 45 likes
    Undo
  14. Retweeted
    May 6

    Time to update 🔔 Tor Browser 8.0.9 fixes the issue which disabled NoScript and all other Firefox extensions signed by Mozilla. If you used the workaround we mentioned, don't forget to set it back after installing this update.

    3 replies 105 retweets 135 likes
    Show this thread
    Show this thread
    Undo
  15. Retweeted
    May 5

    A Mystery Frequency Disrupted Car Fobs in an Ohio City, and Now Residents Know Why Dude was keying the 315Mhz band. 🤣

    2 replies 15 retweets 33 likes
    Undo
  16. May 4

    In high-stress moment, it's a lot easier to decide to shoot when the President has called people like the person you're aiming at worthless bums.

    3 replies 20 retweets 73 likes
    Show this thread
    Show this thread
    Undo
  17. May 4

    On this 49th anniversary of the massacre at Kent State, it’s sobering to note the similarities between the official rhetoric used to dehumanize anti-war protesters then and that aimed at targeted groups today.

    3 replies 74 retweets 186 likes
    Show this thread
    Show this thread
    Undo
  18. May 3

    I just got a little USB power meter and this was printed on the box. These people obviously don’t know me at all.

    6 replies 4 retweets 27 likes
    Undo
  19. May 1

    Also roughly the percentage of students who would complete a 448 page reading assigned two weeks earlier in class.

    3% of Americans say they have read the entire 448-page Mueller report via new poll
    14 replies 4 retweets 120 likes
    Undo
  20. Retweeted
    Apr 30
    Replying to

    Hi Matt, I reviewed that report and can reconfirm the substance of what it states. As you know, it’s difficult to tell apart a vulnerability/mistake and a backdoor. Also, of course the article is not scientifically precise ;)

    3 replies 2 retweets 8 likes
    Undo
  21. Apr 30

    Speaking of supply chain attacks, some persistently unfixed vulnerabilities in Huawei gear. Article irritatingly uses “vulnerability” synonymously with “backdoor”, though it’s particularly murky here.

    3 replies 17 retweets 29 likes
    Undo

@mattblaze hasn't Tweeted yet.

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.