🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

I'm looking for a PhD student to do network security research. Interest in WiFi is a plus, but any protocol is in scope. Think analyzing protocols, fuzzing, privacy aspects, defenses, etc. Specific topic can be agreed upon. Details at kuleuven.be/personeel/jobs… or ask! Deadline 30/9

Excited to share that WebSpec, our framework for the machine-checked analysis of browser security mechanisms, has been accepted at IEEE S&P 2023! arxiv.org/abs/2201.01649 Marco Squarcina Mauro Tempesta Lorenzo Pedro Bernardo TU Wien S&P TU Wien

Securely hosting active and inactive user data is a fairly complex task (in particular in the light of third-party cookie deprecation). Read how David Dworken and terjanq achieved this at Google by leveraging new web platform (security) features. security.googleblog.com/2023/04/secure…

Congratulations to Yana Dimova and team from DistriNet for receiving the best student award at PETS 2023.

Does anyone have a ticket for USENIX Security for sale by any chance? 🙏 #usesec23

Attending USENIX Security today? I can highly recommend attending the presentation by Gertjan Franken on the causes and lifecycles of CSP bugs (spoiler: not all of them evolve in a beautiful butterfly 🦋) Research paper is available at usenix.org/system/files/u…

#BHUSA & #usesec23 have been a blast! Check out our work "Cookie Crumbles: Breaking and Fixing Web Session Integrity"! Black Hat USENIX Security tuvienna Instituto Superior Técnico 🍪 Paper usenix.org/conference/use… Slides minimalblue.com/data/papers/BH… Pedro Adão Lorenzo Matteo Maffei

Attention post-docs! My research group (DistriNet at KU Leuven) is hiring an Assistant Professor 🎓 in Distributed Systems on our main science & engineering campus in Leuven, Belgium 🇧🇪kuleuven.be/personeel/jobs… #academic #job #distributed #software #systems

The call for papers of the #SecWeb workshop (co-located with IEEE Security and Privacy) is now online! The deadline is in 1 month. Please consider submitting your web security and privacy research here! secweb.work/2024.html cc Marco Squarcina

Do you work on cool attack or other offensive research (Black Hat/DEF CON type of work)? 🥷 Consider submitting your research to the WOOT practitioner track to get valuable feedback from an amazing PC 😍 and reach a wider audience 🎤! usenix.org/conference/woo…

Congratz to Gertjan Franken (Gertjan Franken) for his successful PhD defense: Security and Privacy Policy Bugs in Browser Engines. Great achievement. Looking forward to your future publications and work!

⚠️ We heard you! The deadline for the WOOT practitioner track has been extended by 2 weeks. New submission deadline is Mar 5th (AoE), so get your offensive research in soon! No changes to the academic track (deadline: Mar 12th). Your submission goes here: woot24.usenix.hotcrp.com

We are excited to announce the first keynote speaker of SecWeb 2024! Dr. Tom Van Goethem Tom Van Goethem from Google & KU Leuven will talk about "The Journey towards a Cookie-free Diet". Be there! #SecWeb2024 IEEE S&P Marco Squarcina

🚨 Introducing the 2024 Web Almanac, our annual "state of the web" report! 🔖 almanac.httparchive.org/en/2024/ 21 chapters (11 publishing today, the rest to follow) 65 contributors for today's chapters (more to follow) 17M websites analyzed 83 TB of data processed 628 queries written

After an embargo of 8 months, we are glad to finally share our USENIX Security '25 paper! We found more than 4 MILLION vulnerable tunneling servers by scanning the Internet. These vulnerable servers can be abused as proxies to launch DDoS attacks and access internal networks.