CISO at @sardineai. Treasurer of @OWASP Board of Directors. (he/him) qatta' mIghtaHghach.
Phoenix, AZ
Joined July 2009
- Tweets 8,305
- Following 139
- Followers 776
- Likes 17,402
If you find yourself in Europe, be sure to visit Luxembourg. Gen. Patton is buried there and they have a war museum dedicated to WWII and the Battle of the Bulge, which was partially fought in Luxembourg.
visitluxembourg.com/en/place…
1
5
Proposed spec on how to format SMS one-time codes:
wicg.github.io/sms-one-time-…
It’s one thing to be divided politically, but it feels like we’re heading toward a physical split along ideological lines.
npr.org/2020/04/18/837776218…
1
1
If you need a face mask and want to support ocean conservation, @PADI is taking pre-orders.
Masks are made from recycled plastic and include 5 charcoal filters.
padigear.com/collections/pad…
2
Looks like the main branch of a petrified tree root or vine, where the smaller branches have broken off and worn down. Cool find regardless!
1
Just two days left to submit to the OWASP Global AppSec San Francisco conference for presenting and/or training!
Only 1 week left to submit a talk or training for the @owasp Global AppSec conference in San Francisco!
Be sure to check out the tracks, this year we have Security Governance AND Security Essentials!
And we want first-time speakers, please submit!
sf.globalappsec.org/
2
Faking a positive result on a COVID-19 test is a crime, plus you're a total asshat. Don't do it.
Employers lose thousands (in one case, $175k) by shutting down and disinfecting. Co-workers also personally lose by going to Airbnb to self-quarantine.
cnn.com/2020/04/14/politics/…
CDMA and GSM are not end-to-end encryption protocols.
Flip it around, it’s also widely understood that lawful interception can be abused.
Greek wiretapping capability hacked:
spectrum.ieee.org/telecom/se…
FBI misled FISA court for wiretapping:
nypost.com/2020/03/31/justic…
One of my favorite security conferences is going virtual for $25, which includes the conference AND the workshops!
This is a steal! I spent well over $1000 to attend in previous years.
Registration for #SP20 is once again open! Registration will only be $25. We hope that this will make it possible for many more people, including students to attend this year's conference. This fee will also cover attendance to the workshops as well!
na.eventscloud.com/ereg/inde…
1
I decided to do my taxes by the original deadline (today!)
I feel much better having it done and behind me.
I think about this story from time to time. Wish collaboration across disciplines could happen more often.
(Source: news.stanford.edu/news/2004/…)
1
All excellent trainers! I’m attending one of the trainings on threat modeling.
Improve your #Appsec skills for a great price! Visit our website today to register or learn more about OWASP Virtual Appsec Days and the 11 online training courses being offered. ow.ly/D7cN50zac5o
1
What's this? A "SECRET BUTTON" on the @ArizonaDOT website?
If you find it and click it, you'll "pop" in surprise.
1
2
We’re planning for in-person, but will switch to virtual if needed. We ask submitters to be prepared to deliver either way.
3
I’m guessing they’re trying to avoid a situation where they come out with a new feature or app, and a user claims the idea was stolen. Instead of defending that lawsuit, they’ll whip out the TOS and say they’re allowed to use it.