Kelly Shortridge
@swagitda_
Followers
29K
Following
23K
Media
608
Statuses
9K
Senior Director @Fastly | software resilience + modern infosec | [email protected] | https://t.co/68itNjq8tL | aka &void;
Mirrormor
Joined August 2014
this Valentine’s / Galentine’s / Palentine’s Day, want the secret to everlasting love? my secret is writing a book about my special interests! cry over a book deadline, not a human. invest in yourself and a love that will never leave, cheat, or let you down 🥰
19
20
239
tech must serve humans, not the other way around. we need to: 1. focus on the "why?" behind AI models, ie the human benefit 2. be honest about the current state of sparkling statistics -- like @Cisco's @jpatel41 did at their AI summit last week https://t.co/kQQeQO9oMy
#sponsored
2
3
29
thread on the optical illusions/first principles of makeup
currently exploring first principles of how makeup works—optical illusion, contour, volume, color theory—it's so fascinating wow. For example: long eyelashes are effective bc of the Müller-Lyer illusion (objects appear larger w outward radiating lines)
39
4K
86K
Compliance is hard, and what I hear from tech leaders is that AI models / LLMs you don't know about makes it even harder. @Cisco has thought a lot about this problem, and just launched new inventory & DLP capabilities -- read more ➡️ https://t.co/SPj4ev8nc7
#CiscoAI #sponsored
1
0
13
📌 “Both stakeholders (reliability and cybersecurity) want similar outcomes, so the more we can find design opportunities that eliminate or reduce hazards in the system–towards resilience and security by design–the safer and more reliable our code will be”
kellyshortridge.com
This blog post explains why cybersecurity shouldn’t be a special stream of work in organizations, and presents opportunities for security programs to become more constructive and less gatekeepy.
0
3
5
every time I have to solve this style of captcha, I assume this is what it feels like to take bath salts in public
1
2
14
Phrack 71 is out, including my article on using instruction patching, syscall remoting, and in-memory implants:
The time has come, and with it your reading material for the week. Phrack #71 is officially released ONLINE! Let us know what you think! https://t.co/BRnK9lnGjI
4
7
50
Episode 98: The CrowdStrike Incident with @swagitda_! 🎉 YouTube video: https://t.co/vq3xktNccU Ad-free video for Patreon members! https://t.co/3qC0nSiwkJ Audio version: https://t.co/ajA78F8zpz
0
1
8
Very pleased with the screams of Platonists. The mathematical nature of reality is not obligated to be simple and sexy and perceivably Divine. We're just playing in the beginner area. Greater minds will discover bitrotten horror beyond our comprehension. https://t.co/yqCR6U9LXM
This is worse than the thing with packing squares. God has abandoned us
39
220
3K
Is no one going to comment about how it spit out a woman in a bathing suit speaking at a tech conference or
Holy shit. Without a doubt the most realistic AI images I've ever seen. We are 99.7% of the way to completely indistinguishable-from-reality AI imagery. (You can still see a few flaws when zooming in) This is made with FLUX. Uncanny Valley.
198
2K
42K
I’m overjoyed to have an article of mine published in phrack after reading its back catalog for so long. Wish I could be at defcon to pick up a copy. Many thanks to the phrack staff for publishing it and to the early reviewer (you know who you are) who pushed me to improve it.
o/ We are excited to announce that we are bringing some professionally printed copies of Phrack 71 to give out at @defcon! We will share where to get them when the time comes.
3
7
35
The security community truly deserves better than the current status quo it gets from so many of its vendors. Vendors shouldn’t narcissist’s prayer and gaslight you after they cause harm! They should respect their accountability rather than litigate against their victims.
0
2
35
I’ve always side eyed the phrase “simping” until I saw the obsequious praise security bros are lavishing on Crowdstrike for one of the worst RCA docs I’ve ever read, and now I get it
4
3
100
According to a new report from the @MTA's in-house rider advocacy organization on alternative funding mechanisms to congestion pricing, only congestion pricing: ✅reduces traffic and emissions ✅adequately funds the MTA ✅secures federal funding for major infrastructure projects
Our new report evaluates all of the alternatives proposed for congestion pricing since Governor Hochul announced her pause, read it here:
53
87
430
unfortunately i was impacted by layoffs today and after two years my time at fastly has come to an end. i’m very proud of the work i did there and i’m going to miss my colleagues so much. if you or someone you know is hiring frontend software engineers please reach out!
10
23
104
Some copies of Phrack 71 are currently available near Hall 4 at LVCC :))
3
26
140
I can't believe I'm the one who's scared of taking jobs working in the kernel/ring0 and writing drivers but these 80billion USD-valuation companies can just no-protection rawdog the kernel with the sloppiest practices I've ever seen and it's totally okay. Sweet mercy.
Crowdstrike party time... it looks like the data was uninitialized, but not intentionally. The mismatch in the code run at ring0 was them fucking up validation, and they failed to account in their C++-built interpreter. It accessed data that was "supposed" to be there but wasn't.
9
39
491
Laughed out loud at the CEO of Toast refusing an analyst's request to use a baseball analogy
27
59
3K
If every person who hit, hurt or killed another person with a car faced just, fitting, commensurate loss of driving privileges, vehicle and monetary penalties, we would have safe streets in 5 years. Because we would add literally millions of walkers/bikers/transit users a year.
It's been a while since I cried while writing a story, but this one got me. But I almost didn't write it at all, for a few reasons I'll unpack here. 🧵
24
164
1K
more computing-infused ceramic explorations.. fortune cookies that give you a new fortune each day
45
252
3K