Poked firmware before it was cool. Security researcher @NVIDIA. Opinions expressed are my own.
Joined August 2015
- Tweets 135
- Following 165
- Followers 600
- Likes 772
2 Photos and videos
Pinned Tweet
17 Sep 2023
A recording of our #defcon31 talk "Breaking BMC - The Forgotten Key to the Kingdom" is now available: youtube.com/watch?v=dbJQIQib…
cc: @Adam_pi3
1
16
39
8,223
Alex Tereshkin retweeted
2
10
981
Alex Tereshkin retweeted
10 Aug 2025
2
16
2,485
Alex Tereshkin retweeted
2 Jul 2025
Nvidia OSR (@AlexTereshkin, @Adam_pi3) reveals high-impact Supermicro BMC vulnerabilities (CVE-2024-10237/38/39). Binarly REsearch documenting the details:
👻Ghost in the Controller: Abusing Supermicro BMC Firmware Verification.
Read the full story: binarly.io/blog/ghost-in-the…
1
21
29
7,470
Alex Tereshkin retweeted
9 Jun 2025
Together with @AlexTereshkin we managed to summarize NVIDIA Offensive Security Research (OSR) work on breaking BMC (reference to our DefCon talk youtube.com/watch?v=dbJQIQib…). This blog post also includes a link to the full paper.
6 Jun 2025
Baseboard Management Controllers (BMCs) are vital for remote server management, but they can also be a significant security risk.
Explore findings and recommendations to safeguard your #datacenter infrastructure from NVIDIA's Offensive Security Research team. ➡️ nvda.ws/3HsQOme
13
28
6,322
Alex Tereshkin retweeted
7 May 2025
I'm delighted to share that our talk "How to Secure Unique Ecosystem Shipping 1 Billion Cores?" has been accepted to @BlackHatEvents #BHUSA 2025!
How to create a secure unique ecosystem from scratch? What's Separation Kernel? How and why to modify RISC-V? come to our talk! :)
2
11
41
6,913
Alex Tereshkin retweeted
5 Mar 2025
You can now jailbreak your AMD CPU! 🔥We've just released a full microcode toolchain, with source code and tutorials. bughunters.google.com/blog/5…
39
523
1,756
176,999
Alex Tereshkin retweeted
1 Mar 2025
Found a nice little SecureBoot bypass in a sizable bunch of UEFI firmwares, will share the details when able.
Meanwhile, this is the SHA2-256 of the PoC tool to trigger it:
530584749f90d187ac20f77c6d4bb2e09ec1c852090962dfab01c4274a8a6d2d
1
10
37
16,079
Alex Tereshkin retweeted
25 Oct 2024
New blog post: Tales from the Call-Gate: An SMM Supervisor Vulnerability
labs.ioactive.com/2024/10/ta…
@kiqueNissim
1
24
70
8,410
26 Sep 2024
Nice writeup! Thanks guys.
26 Sep 2024
🚨New! "CVE-2024-36435 Deep-Dive: The Year’s Most Critical BMC Security Flaw."
🔥Classic buffer overflow vulnerabilities resurface in BMCs, remotely opening the gates from the castle.
🏆Kudos to @AlexTereshkin for the initial discovery and disclosure!
binarly.io/blog/cve-2024-364…
2
9
1,819
27 Aug 2024
Thanks, Xeno. Those were fun times indeed. Much respect to LegbaCore research! #ResearchRespect
26 Aug 2024
I'm trying to start a positive security trend of #ResearchRespect wherein we give shoutouts to researchers whose work we really respect and describe why. I'll go first (in no particular order) with "Attacking Intel BIOS" by Rafal Wojtczuk and @AlexTereshkin at BlackHat 2009
6
435
Alex Tereshkin retweeted
20 Nov 2023
#LogoFAIL abstract is online! Embargo ends on Dec 6th. LogoFAIL impacting all major IBVs reverence code: AMI, Insyde, and Phoenix. Also, this attack is not silicon-specific but UEFI-specific🔥 and impacts ARM and x86.
Kudos to @Binarly_io REsearch team!
blackhat.com/eu-23/briefings…
5
35
82
19,201
Alex Tereshkin retweeted
10 Sep 2023
🔬OSR Team keeps rocking! @AlexTereshkin and @Adam_pi3 keep digging into BMC and FW rabbit hole.
🔥The main caveat is that most of those discoveries are related to IBVs reference code and impact the entire industry.
⛓️One vendor fix != Industry
⛓️Supply Chain Security is hard!
7 Sep 2023
NVIDIA released a security bulletin for NVIDIA DGX H100.
Thanks to the NVIDIA OSR team for: CVE‑2023‑25531, CVE‑2023‑25532, CVE‑2023‑25533, CVE‑2023‑25534, CVE‑2023‑31008, CVE‑2023‑31009, CVE‑2023‑31010, CVE‑2023‑31011, CVE‑2023‑31012, and CVE‑2023‑31013
nvidia.com/en-us/security/
8
19
5,795
Alex Tereshkin retweeted
12 Aug 2023
What is BMC? Should we care about BMC's security? How easy is it to hack it?
You can find all the answers during our talk (CC @AlexTereshkin) at @defcon at 3:30pm on Saturday ;-) Join us!
forum.defcon.org/node/245714
CC: @mbazaliy, @igoooo, NVDA RISC-V FW dude
#DEFCON31 #Defcon
3
5
36
6,700
21 Jun 2023
Check out the abstract of our upcoming DC talk :)
CC: @Adam_pi3
forum.defcon.org/node/245714
1
1
9
10,478
11 Jun 2023
We enjoyed doing this research, super fun stuff. See you all in Vegas!
11 Jun 2023
"Accepted Presentation:
Breaking BMC: The Forgotten Key to the Kingdom
Congrats! Your @defcon 31 Submission is accepted!"
I'm super exited about the 3rd DefCon talk in a row! :)
CC: Alex Tereshkin (@AlexTereshkin)
#defcon31 #defcon
3
702
Alex Tereshkin retweeted
17 May 2023
Bug bounties are broken - the story of "i915" bug, ChromeOS Intel bounty programs, and beyond
@GoogleVRP @IntelSecurity
How the unspoken problems of bug bounties can be addressed? "Imbalance of Power" is a real problem and it should be changed.
blog.pi3.com.pl/?p=931
2
27
92
30,902
Alex Tereshkin retweeted
25 Apr 2023
RISC-V (@risc_v) Control Flow Integrity (CFI) is coming and I'm proud to be one of the contributors to this important security extension. Full spec is available here:
github.com/riscv/riscv-cfi/b…
1
29
109
14,638
Alex Tereshkin retweeted
23 Mar 2023
NVIDIA has released a security bulletin for NVIDIA DGX-2, DGX Station A100, and DGX A100.
Thanks to our own NVIDIA Offensive Security Research (OSR) team for:
CVE‑2022‑42274, ‑42280, ‑42282, ‑42283, ‑42286, ‑42287, ‑42289, and ‑42290.
nvidia.com/en-us/security/.
2
5
13,609
Alex Tereshkin retweeted
9 Mar 2023
🔥New blog: "The Untold Story Of The #BlackLotus UEFI Bootkit".
🔬Binarly REsearch discovered new interesting data points about the nature of the BlackLotus code. It appears it based on the Umap GitHub (2020) or coincidently arrived at the same ideas.
binarly.io/posts/The_Untold_…
2
75
164
55,260