Nadim Kobeissi's Avatar

Nadim Kobeissi

@nadim.computer

Applied cryptographer. Mainly working in the cryptography auditing industry, but sometimes venturing back into academia. Hobbyist puzzle game author. https://nadim.computer

792
Followers 350
Following 1,393
Posts 21.07.2023
Joined
Posts Following

Latest posts by Nadim Kobeissi @nadim.computer

Post image
11.03.2026 09:39 πŸ‘ 10 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Preview
Secure by Default? Taking a Closer Look at Deno Deno promised β€œsecure by default.” A CISPA study shows: safer than Node.jsβ€”but two core security concepts can open new attack surfaces.

Deno promises to be secure by default. A study by CISPA researcher Abdullah Alhamdan shows that while Deno has a smaller attack surface than Node.js, it is not automatically secure. Shadow permissions and URL-based imports can introduce supply-chain risks. Learn more: cispa.de/en/deno

11.03.2026 09:36 πŸ‘ 0 πŸ” 1 πŸ’¬ 0 πŸ“Œ 0

Sabotage as a service. Iran is recruiting spies and potential saboteurs through Telegram, and Russia is doing the same. Both services pay ordinary people for specific tasks, because maintaining classical agent networks is too expensive and too easy to dismantle. inews.co.uk/news/iran-hi...

11.03.2026 08:33 πŸ‘ 24 πŸ” 15 πŸ’¬ 2 πŸ“Œ 0

Especially since they can make it come from a contact you trust already in a thread that already exists

11.03.2026 06:41 πŸ‘ 1 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0

@kientuong114.bsky.social Just occurred to me: the message injection vulnerability is really a premium malware injection method by an APT actor

11.03.2026 06:40 πŸ‘ 1 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0

Me, secretly hoping that someone will notice that my caps lock posts have layered meanings and references (try googling this one for example)

People reading this post: this guy is weird and tweets in broken English and caps lock

11.03.2026 06:35 πŸ‘ 1 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0

Translation: I’ve left #realworldcrypto a few hours early to enjoy the sunny weather in Taipei and to recharge a bit, but am still available in Taipei the next couple of days in case anyone would like to reach out.

11.03.2026 06:31 πŸ‘ 0 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0

NOW I WILL SLEEP FOR THE OTHER 100 YEARS.

11.03.2026 06:29 πŸ‘ 2 πŸ” 0 πŸ’¬ 2 πŸ“Œ 0
Post image

I’ll be at the coffee area in around 20mins with your box! Which color will you get!??????!!?!??!?

Also please show me ID before I can give you the box (for safety reasons)

11.03.2026 00:38 πŸ‘ 2 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Post image
10.03.2026 14:35 πŸ‘ 1 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0

Yes obviously, this is a very dangerous and serious product!

10.03.2026 14:24 πŸ‘ 0 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0

Rahoe Night Market! I got one for you!

10.03.2026 14:21 πŸ‘ 1 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Post image
10.03.2026 13:49 πŸ‘ 2 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0
Post image Post image Post image

Buying myself a souvenir of today. Which color will I get???

10.03.2026 13:43 πŸ‘ 0 πŸ” 0 πŸ’¬ 3 πŸ“Œ 0

Very humbled by the reaction to my talk! Tried to talk to as many people as I could today afterwards, but my social battery is now minus 700% so I really need a break. I will be available tomorrow if anyone wants to chat more! #realworldcrypto

10.03.2026 12:41 πŸ‘ 13 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0

This is the session that reminds us: cryptography is not just math. It's policy, ethics, power, and access. When proofs aren't enough, context matters. And building crypto education in Lebanon proves cryptographic infrastructure can be an act of resilience.

10.03.2026 08:07 πŸ‘ 2 πŸ” 1 πŸ’¬ 0 πŸ“Œ 0

The room gets philosophical. Cryptography & Society chaired by Nick Sullivan ( @nicksullivan.org ): what is crypto hiding from itself? Security vs. interoperability? CRA policy? Proofs that aren't enough? And Nadim Kobeissi on teaching crypto in post-crisis Lebanon. #realworldcrypto

10.03.2026 08:05 πŸ‘ 8 πŸ” 3 πŸ’¬ 1 πŸ“Œ 0
Post image
10.03.2026 08:10 πŸ‘ 5 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0

The talk by @simonecolombo.bsky.social, @malb.bsky.social and @bedow.bsky.social at #realworldcrypto is super important and exceptional! Everyone should review this talk: iacr.org/submit/files...

10.03.2026 02:23 πŸ‘ 4 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0

I can never thank you enough for the years of laughs, witty commentary and thoughtful questions your comics have given me and my friends!

10.03.2026 01:06 πŸ‘ 1 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0

A BEAUTY IS JOYING IN MY HEART!

09.03.2026 14:54 πŸ‘ 1 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
The World Revolving - 11-Piece Jazz Orchestra Cover [DELTARUNE]
The World Revolving - 11-Piece Jazz Orchestra Cover [DELTARUNE] YouTube video by Live Video Game Orchestra

youtu.be/itXOcSop6Wo

09.03.2026 14:51 πŸ‘ 0 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0

Spoke to seven trillion people today

09.03.2026 13:33 πŸ‘ 4 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Abstract. Signal is a secure messaging app offering end-to-end security for pairwise and group communications. It has tens of millions of users, and has heavily influenced the design of other secure messaging apps (including WhatsApp). Signal has been heavily analysed and, as a result, is rightly regarded as setting the β€œgold standard” for messaging apps by the scientific community. We present two practical attacks that break the integrity properties of Signal in its advertised threat model. Each attack arises from different features of Signal that are poorly documented and have eluded formal security analyses. The first attack, affecting Android and Desktop, arises from Signal’s introduction of identities based on usernames (instead of phone numbers) in early 2022. We show that the protocol for resolving identities based on usernames and on phone numbers introduced a vulnerability that allows a malicious server to inject arbitrary messages into one-to-one conversations under specific circumstances. The injection causes a user-visible alert about a change of safety numbers, but if the users compare their safety numbers, they will be correct. The second attack is even more severe. It arises from Signal’s Sealed Sender (SSS) feature, designed to allow sender identities to be hidden. We show that a combination of two errors in the SSS implementation in Android allows a malicious server to inject arbitrary messages into both one-to-one and group conversations. The errors relate to missing key checks and the loss of context when cryptographic processing is distributed across multiple software components. The attack is undetectable by users and can be mounted at any time, without any preconditions. As far as we can tell, the vulnerability has been present since the introduction of SSS in 2018. We disclosed both attacks to Signal. The vulnerabilities were promptly acknowledged and patched: the first vulnerability was fixed two days after disclosure, while the second one was patched after eight days. Beyond presenting these devastating attacks on Signal’s end-to-end security guarantees, we discuss more broadly what can be learned about the challenges of deploying new security features in complex software projects.

Abstract. Signal is a secure messaging app offering end-to-end security for pairwise and group communications. It has tens of millions of users, and has heavily influenced the design of other secure messaging apps (including WhatsApp). Signal has been heavily analysed and, as a result, is rightly regarded as setting the β€œgold standard” for messaging apps by the scientific community. We present two practical attacks that break the integrity properties of Signal in its advertised threat model. Each attack arises from different features of Signal that are poorly documented and have eluded formal security analyses. The first attack, affecting Android and Desktop, arises from Signal’s introduction of identities based on usernames (instead of phone numbers) in early 2022. We show that the protocol for resolving identities based on usernames and on phone numbers introduced a vulnerability that allows a malicious server to inject arbitrary messages into one-to-one conversations under specific circumstances. The injection causes a user-visible alert about a change of safety numbers, but if the users compare their safety numbers, they will be correct. The second attack is even more severe. It arises from Signal’s Sealed Sender (SSS) feature, designed to allow sender identities to be hidden. We show that a combination of two errors in the SSS implementation in Android allows a malicious server to inject arbitrary messages into both one-to-one and group conversations. The errors relate to missing key checks and the loss of context when cryptographic processing is distributed across multiple software components. The attack is undetectable by users and can be mounted at any time, without any preconditions. As far as we can tell, the vulnerability has been present since the introduction of SSS in 2018. We disclosed both attacks to Signal. The vulnerabilities were promptly acknowledged and patched: the first vulnerability was fixed two days after disclosure, while the second one was patched after eight days. Beyond presenting these devastating attacks on Signal’s end-to-end security guarantees, we discuss more broadly what can be learned about the challenges of deploying new security features in complex software projects.

Image showing part 2 of abstract.

Image showing part 2 of abstract.

Signal Lost (Integrity): The Signal App is More than the Sum of its Protocols (Kien Tuong Truong, Noemi Terzo, Kenneth G. Paterson) ia.cr/2026/484

09.03.2026 01:23 πŸ‘ 24 πŸ” 13 πŸ’¬ 0 πŸ“Œ 1

Just finished presenting this work at Real World Crypto in Taipei :)

TL;DR: We found 2 attacks on Signal (Android, Desktop) where a malicious server can inject messages in conversations.

Super fun project! Thanks a bunch to Noemi Terzo, @kennyog.bsky.social, and @cryptojedi.bsky.social

09.03.2026 05:53 πŸ‘ 15 πŸ” 3 πŸ’¬ 0 πŸ“Œ 0
Post image

Incredible that thirteen years later, the core problem affecting my original secure messaging project, Cryptocat, is being seriously considered!

Cryptocat was essentially the poster child for this precise weakness of the web.

09.03.2026 01:56 πŸ‘ 10 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Post image
08.03.2026 23:03 πŸ‘ 0 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0
Quartz Quadrant (Re-Imagined) [YM2151 + SegaPCM] - Sonic CD (JP)
Quartz Quadrant (Re-Imagined) [YM2151 + SegaPCM] - Sonic CD (JP) YouTube video by MegaBaz

Morning jam music.youtube.com/watch?v=MPTi...

08.03.2026 22:53 πŸ‘ 0 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0

Watching remotely? You can follow Real World Crypto 2026 on YouTube livestreams (also available via the website):

Day 1 (Mar 9): youtube.com/live/QQhyxFj...
Day 2 (Mar 10): youtube.com/live/00zvMSW...
Day 3 (Mar 11): youtube.com/live/v_AFtbW...

08.03.2026 13:13 πŸ‘ 12 πŸ” 6 πŸ’¬ 0 πŸ“Œ 1

πŸ”΄πŸ‡±πŸ‡§ 83 children among almost 400 people killed in one week of conflict between Israel and Hezbollah, says Lebanon's health minister.

08.03.2026 12:17 πŸ‘ 15 πŸ” 11 πŸ’¬ 1 πŸ“Œ 1