Tal Be'ery (@TalBeerySec) / X

Tal Be'ery

16.1K posts

Tal Be'ery

@TalBeerySec

Security Research Manager. Co-Founder, CTO @ZenGo. Advisor @ZeroNetworks. x-VP Research Aorato, acq by @Microsoft. 10 times @BlackHatEvents speaker.

Israel

linkedin.com/in/talbeery

Joined April 2014

Pinned
Tal Be'ery
@TalBeerySec
Feb 22, 2015
OMG! i'm in RFC! tools.ietf.org/html/rfc7457#r…
Tal Be'ery
@TalBeerySec
Jul 24, 2020
#infosec caption it. I start. When you realize that you are better off with #sysmon + ELK, than with $2M SIEM license quota filled with firewall log data
This Post is from a suspended account. Learn more
Tal Be'ery
@TalBeerySec
Jan 15, 2020
Just published a blog explaining the root cause of the recent #win10 crypto vulnerability (CVE-2020-0601 / #curveball ?) using some "Load Bearing Analogies" to make it more accessible. CC: @tqbf @grittygrease @dakami
Win10 Crypto Vulnerability: Cheating in Elliptic Curve Billiards 2
From medium.com
Tal Be'ery
@TalBeerySec
Jan 23, 2020
Even with end to end encryption, metadata matters
Tal Be'ery
@TalBeerySec
Mar 20, 2023
Yikes! Tomorrow @ZenGo will publish about a vulnerability we had found in @coinbasewallet and others. We had responsibly disclosed to CB many weeks ago, they fixed and awarded us multiple bug bounties. Today we informed them we are going to publish. This is the reaction we got:
410K
Tal Be'ery
@TalBeerySec
Dec 12, 2024
Unauthenticated Remote Code Execution (RCE) on Domain Controllers (DC). It does not get worse than that. Probably will be included in #ransomware campaigns. Any technical analysis of CVE-2024-49112 published? CC: @gentilkiwi @harmj0y @_wald0
147K
Tal Be'ery
@TalBeerySec
Aug 30, 2025
A week ago, I reported a privacy vulnerability to @Meta which may allow attackers to discover any @WhatsApp users' devices details, including online status and operating system. This flaw enables adversaries to accurately target a vulnerable iOS (iPhone) device.
00:00
John Scott-Railton
@jsrailton
Aug 29, 2025
NEW: @WhatsApp caught & fixed a sophisticated zero click attack... Now they've published an advisory about it. Say attackers combined the exploit with an @Apple vulnerability to hack a specific group of targets (i.e. this wasn't pointed at everybody) Quick thoughts 1/
132K
Tal Be'ery
@TalBeerySec
Jul 16, 2025
Replying to @elder_plinius and @xai
34K
Tal Be'ery
@TalBeerySec
Jan 1, 2025
1/ A DoS exploit demo for CVE-2024-49112 by @safebreach. RCE exploit is probably coming soon. Patch!
00:00
Tal Be'ery
@TalBeerySec
Dec 12, 2024
Unauthenticated Remote Code Execution (RCE) on Domain Controllers (DC). It does not get worse than that. Probably will be included in #ransomware campaigns. Any technical analysis of CVE-2024-49112 published? CC: @gentilkiwi @harmj0y @_wald0
69K
Tal Be'ery
@TalBeerySec
Dec 4, 2023
Did Hamas trade on terror and shorted Israeli ETFs before #7octobermassacre yielding profit in the Billions? Very Likely, say the former SEC commissioner @SECJackson et al. img.haarets.co.il/bs/0000018c-30… via @haaretzcom
552K
Tal Be'ery
@TalBeerySec
Jul 25, 2024
1/ A world first reverse engineering analysis of AWS Session Tokens. Prior to our research these tokens were a complete black box. Today, we are making it more of a glass box, by sharing code and tools to analyze and modify AWS Session Tokens.
Revealing the Inner Structure of AWS Session Tokens
From medium.com
58K
Tal Be'ery
@TalBeerySec
Mar 20, 2023
Replying to @TalBeerySec
A bug bounty is not a gag order. We will not be bullied or intimidated. #CoinbaseWallet you can have your money back. CC: @brian_armstrong
34K
Tal Be'ery
@TalBeerySec
Aug 8, 2017
"apt-get install bloodhound" FTW! #BloodHound was recently added to @kalilinux Thanks @GotMilk, sbrun CC: @_wald0 @harmj0y @CptJesus
Tal Be'ery
@TalBeerySec
Mar 20, 2023
Replying to @TalBeerySec
This is NOT the way to treat security researchers. We conducted this research to increase the security of the ecosystem and not for some bug bounties. Bug bounties are mostly tokens of appreciation. So, YES, we will publish. And, YES, we name CB and share a video of an exploit.
26K