Bil Corry @bilcorry

CISO at @sardineai. Treasurer of @OWASP Board of Directors. (he/him) qatta' mIghtaHghach.

 Phoenix, AZ
linkedin.com/in/bilcorry/
Joined July 2009
  • Tweets 8,305
  • Following 139
  • Followers 776
Load newest
If you are curious what the @owasp Board is up to.
Sherif Mansour @kerberosmansour@infosec.exchange @Kerberosmansour
21 Feb 2021
Hey everyone, I'll be posting OWASP related video updates (2-4 min each) on a regular basis. Here's today's clip it mainly talks about three things youtube.com/es_vfBD9xfY .../
Jackie Chan memoir newrepublic.com/article/1528…
Wow, Oracle is “marketing capabilities to increase the combat power of Chinese military”. Taking a page from IBM’s playbook. theintercept.com/2021/02/18/…
Bil Corry retweeted
Chris Wysopal @WeldPond
20 Feb 2021
But Macs don't get malware. Yes, you should run AV on your Macs. arstechnica.com/information-…

New malware found on 30,000 Macs has security pros stumped

With no payload, analysts are struggling to learn what this mature malware does.

arstechnica.com
9
91
7
249
“This proves that SHA-1 signatures now offer virtually no security in practice.” usenix.org/conference/usenix…
3
I thought this was going to be a MLM story.
Bil Corry retweeted
Ahsan Khan @hunter0x7
17 Feb 2021
Found secret tokens but not sure about it Solution: github.com/streaak/keyhacks
7
163
4
524
Train at the cybersecurity dojo
This tweet is unavailable
1
1
Um, @Xfinity, I turned off your wifi a couple of months ago but glad it's providing reliable coverage. 🤔
2
Wow, @vvanedwards really delivers sage advice on landing that next job over a video call, but it equally helps with any video interaction. I've included a small clip, see the rest here: linkedin.com/video/live/urn:…
2
0
I weep for our planet.
Jefferson Graham 📷 @jeffersongraham
11 Feb 2021
How big a box do you need for a little lightbulb? Unboxing @AputureLighting
1
Shocking court ruling of the week: HIPAA encryption rule requires a "mechanism" to encrypt data, but does not actually obligate to encrypt data! consumerprivacyworld.com/202…

BIG NEWS: Federal Appeals Court Vacates Multi-Million Dollar HIPAA Penalty, Criticizes Government's...

CPW has previously covered the proliferation of data breaches, including in the healthcare context.  In a dramatic rebuttal of how the Department of

privacyworld.blog
1
1
Public packages get priority over private packages with the same name. You can see where this is going...
Sam Stepanyan @securestep9
10 Feb 2021
Major companies including Microsoft, Apple, PayPal, Shopify, Netflix, Yelp, Tesla, and Uber compromised in a novel software supply chain attack. Malware was placed in open source repositories, which then got distributed downstream into the applications: bleepingcomputer.com/news/se…
1
I think the bigger equitability issue (beyond the lack of smartphones) is the lack of the vaccine. If you are required to be vaccinated to participate in society yet cannot get (or afford it), what then? biometricupdate.com/202102/d…
1
Literally have not laughed harder in a long time. 😹😹😹.
Mikael Thalen @MikaelThalen
9 Feb 2021
A lawyer using Zoom had to let a judge know that he wasn’t a cat after inadvertently activating a face filter
4
14
3
91
Yikes, statistic of the day (from @PSACertified): Only 47% of companies making IoT products (that responded to this survey) do threat modeling; for large companies it goes up to 63% and for small companies drops to 33%. report.psacertified.org/
1
1
Bil Corry retweeted
owasp @owasp
9 Feb 2021
Ever wondered how to make a career out of your hobby? Don't miss our March Lightning Conference speaker, STÖK as he shares the secrets to making a career of Bug Bounties. Registration is free. Reserve your seat today! ow.ly/nTa150DrNgb
5
9
Something to watch if you operate a website with California users.
Dan Veditz @dveditz
8 Feb 2021
maybe, finally, a Do Not Track with teeth (at least in California)
1
After a data breach, your company may embroiled in a class action lawsuit. The Eleventh Circuit just ruled that "speculative fears of hypothetical future identity theft were insufficient to confer standing" and must include allegations of actual misuse. consumerprivacyworld.com/202…

BIG NEWS: The Eleventh Circuit Joins Others In Finding That Speculative Future Harm From A Data...

Readers of CPW are likely already aware of a long-running Court of Appeals split regarding what injuries in the data breach context suffice for purposes

privacyworld.blog
3
1
Load more