CISO at @sardineai. Treasurer of @OWASP Board of Directors. (he/him) qatta' mIghtaHghach.
Phoenix, AZ
Joined July 2009
- Tweets 8,305
- Following 139
- Followers 776
- Likes 17,402
In this lawsuit against @walmart, the @owasp @zaproxy makes a showing.
It found 100K instances of cross domain JavaScript, oh noes! 😂and a bunch of other equally dubious appsec claims.
Attorneys, please hire a competent appsec expert.
Lawsuit PDF: classaction.org/media/gardin…
1
4
7
The draft of Web Content Accessibility Guidelines has a new "Accessible Authentication" mandate - you must offer an auth method that doesn't rely on remembering anything, including passwords.
WebAuthn ftw?
WCAG draft: w3.org/TR/WCAG22/#error-prev…
1
I have had it happen a few times, especially on Saturdays, and they just deliver it the next business day. I assume it is when they forgot to drop it off and didn’t want to drive back, or maybe the carrier was sick and there wasn’t a backup, or something like that.
"Nobody" is a choice for the Republican candidate in New Hampshire for Governor.
Turns out some guy legally changed his name to "Nobody" to win votes from the disaffected.
Background (do read!): insidesources.com/if-nobody-…
1
