Following last week's provisional agreement between @EUCouncil and @Europarl_EN on the NIS Directive revision (#NIS2), I'm thrilled to report that it will provide guidance for EU countries to implement a national Coordinated Vulnerability Disclosure (CVD) policy. A thread 🧵👇.

“The hacker spirit guides us through situations once thought hopeless. Hacking is a way to answer your own burning questions, a way to discover your own potential, and a way to create a world you want to live in.”. ❤️.

Introducing Grok Imagine.

RT @argvee: Today as part of our commitment to transparency in this space, we are proud to announce that we have reported the first 20 vuln….

RT @5aelo: We released our Fuzzilli-based V8 Sandbox fuzzer: It explores the heap to find interesting objects and c….

RT @cryps1s: We just removed a feature from @ChatGPTapp that allowed users to make their conversations discoverable by search engines, such….

RT @msftsecresponse: Microsoft is aware of active attacks targeting on-premises SharePoint Server customers, exploiting a variant of CVE-20….

As for my next steps, it's a crazy world out there, so we'll see! One thing is certain: there is so much to build. I'm looking forward to discovering what the next adventure brings and contributing to what comes next.

Getting the chance to work alongside many of the people across @Google, @GoogleCloudSec, @Mandiant, @GoogleDeepMind that I considered childhood heroes has been a particular highlight, and it's an incredible opportunity I definitely won't take for granted. I'll miss you all.

What I've valued most, however, are the people. Thank you all for being such fantastic colleagues – for the support, the laughs, the teamwork, and the shared learning experiences.

After five rewarding years here at @Google, I've decided it's time for me to move on. I am incredibly grateful for the opportunities I've been given during my time here. I've learned a great deal, worked on challenging and exciting projects, and truly valued the experience.

RT @gditom: Forse il miglior pesce d'aprile mai apparso in Italia. Nel lontano 2018 😢. cc: @diegopia.

RT @GoogleVRP: Developers, tired of DOM XSS in your web applications? 😩 We were too. See how we refactored our code to solve Trusted Types….

RT @GoogleVRP: ❌ Eliminating almost all exploitable web vulnerabilities? This blog post covers how the Google security team implemented a h….

I'm headed to @fosdem this weekend! Really looking forward to connecting with fellow open source enthusiasts and meeting new people. If you're also going to be there, please reach out – I'd love to chat! #FOSDEM.

RT @itswillis: Two new posts from @tiraniddo today:. on reviving a memory trapping primitive from his 2021 post.….

RT @GoogleVRP: 🛡️Want to help make the open source world safer and earn up to $45k 💰? . We've revamped our Patch Rewards Program, extending….

RT @slekies: Today, we announced the official release of OSV-SCALIBR, Google's software composition analysis library. If you are working in….

RT @AustinLarsen_: 🚨 New: Zero-day vulnerability CVE-2025-0282.in Ivanti Connect Secure VPN is being actively exploited, including by suspe….

RT @CISACyber: #Ivanti released security updates to address CVE-2025-0282—being actively exploited—and CVE-2025-0283, affecting Connect Sec….

RT @GoogleVRP: Introducing InternetCTF! 🤯 Earn up to $10,000 for finding RCE vulnerabilities in open-source software AND creating Tsunami p….

RT @GoogleVRP: Can you believe it's already been one year of generative AI bug bounties at Alphabet 🥳? . Besides awarding over $50k for 140….