🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Done with Oakland and have a follow-up idea around Web Security? Know you have some time after CCS to write it down? Perfect! Send it to the 2nd #SecWeb workshop by May 28 (secweb.work). Also note our awesome keynote lineup: Chr. Kerschbaumer and Nataliia Bielova

Super excited to announce that our paper on related-domain (aka same-site) attacks has been accepted at USENIX Security '21! Congrats to my coauthors Mauro Tempesta Lorenzo Stefano Calzavara Matteo Maffei 👏 Preprint soon, now let's get ready for DEF CON CTF quals! Overflow

Missed the USENIX Security deadline and you have a web security paper you would like to submit? The #secweb deadline is 50 hours away, so plenty of time for that! We also accept short papers on ongoing work and we do not force inclusion in the proceedings ;)

Very happy to share our upcoming USENIX Security '21 paper "Can I take Your Subdomain? Exploring Same-Site Attacks in the Modern Web"! Website canitakeyoursubdomain.name Joint work w/ Mauro Tempesta Lorenzo Stefano Calzavara Matteo Maffei CC tuvienna Unive Ca' Foscari #usesec21 🧵1/n

Open PhD position in the S&P TU Wien (secpriv.wien) research unit tuvienna! Interested to work with me on formal verification of security and privacy, blockchains, web security, applied crypto? Apply! Deadline for applications: August 12. jobs.tuwien.ac.at/Job/159834

The Daily Swig reports our study on subdomain vulnerabilities, presented at USENIX Security and joint work tuvienna Unive Ca' Foscari Marco Squarcina Mauro Tempesta Lorenzo Stefano Calzavara S&P TU Wien ViSP portswigger.net/daily-swig/res…

Happy to co-chair the next edition of SecWeb, with Sooel Son (KAIST)! We are pleased to run again our mentorship program: if you want to volunteer as a mentee (junior PC member), fill in the following form by January 17 ---> forms.gle/sb7DY6Cx994x2a…

Very happy to finally release the game code that Overflow used to run DEF CON Finals CTF 🎉 This was roughly the 3rd attack-defense CTF game infrastructure that I've written, so there's a lot of design principles and lessons learned that I'll share here in this 🧵 ...

Would you like your money to be safe in the Lightning Network even if you go off-line and do not want to pay for a watchtower? Sleepy channels come to the rescue! Check out the details in our ACM CCS 2024 paper! eprint.iacr.org/2021/1445.pdf TU Wien CyLab Max Planck Society IMDEA Software

Our new work on the intersection between Web and Mobile security has been accepted at SecWeb 2022, co-located with IEEE S&P! Paper is coming next week. Joint work with Philipp Beer Lorenzo & Martina Lindorfer. This is Philipp's 1st paper, congrats! 👏 #proudsupervisors #SecWeb2022

First proficiency evaluation for our TU Wien doctoral school on Secure and Intelligent Human-Centric Technologies (SecInt)! Great team and cool collaborations at the intersection between security, verification, and machine learning!

Just arrived in SF for IEEE S&P #secweb workshop! Philipp Beer will present our paper "The Bridge between Web Applications and Mobile Platforms is Still Broken". In this work, we discuss 2 novel attacks that stem from the interaction between websites and mobile apps. 🧵[1/4]

Introducing Snakelog: A Python DSL for Datalogs #datalog #python philipzucker.com/snakelog-post/

Excited to share that WebSpec, our framework for the machine-checked analysis of browser security mechanisms, has been accepted at IEEE S&P 2023! arxiv.org/abs/2201.01649 Marco Squarcina Mauro Tempesta Lorenzo Pedro Bernardo TU Wien S&P TU Wien

On my way to S&P! Don’t miss Lorenzo and Pedro Bernardo ‘s talk on WebSpec, our formal model to reason about browser security. arxiv.org/abs/2201.01649 And if you want to share thoughts or a beer, let me know!

Extremely proud of Lorenzo and Pedro Bernardo for the great talk they gave at IEEE S&P 👏 two great young researchers are rising! European Research Council (ERC) TU Wien S&P TU Wien

It was an honor to present at @IEEESP alongside Lorenzo, in my first conference ever. Thanks to Marco Squarcina and Matteo Maffei for all the support!

Now that we're all back and caught up on sleep it's DEF CON CTF Nautilus Institute wrap-up time! 🐚🚩 we managed a great 6th place in a tough competition with conventional pwnage, GenAI-powered spaceships, and LiveCTF duels

Attack/defense training session with Lorenzo + filming day. Thanks to SBA Research - Science for better security for hosting us and keeping us hydrated 🌊 Follow us for more 4K content 😎 #ECSC2024 ENISA CySec Teaser below. #CYBER

There's a new doctor in town! Congrats to Dr. Lorenzo Veronese Lorenzo for successfully defending his PhD and answering tricky questions by Ben Stock Maria Christakis Stefano Calzavara Musard Balliu and Matteo Maffei 🎉 Excellent, excellent job 😌 S&P TU Wien CySec TU Wien