CISO at @sardineai. Treasurer of @OWASP Board of Directors. (he/him) qatta' mIghtaHghach.

Phoenix, AZ
Joined July 2009
Filter
Exclude
Time range
-
Near
Replying to @cagoldberglaw
If you find yourself in Europe, be sure to visit Luxembourg. Gen. Patton is buried there and they have a war museum dedicated to WWII and the Battle of the Bulge, which was partially fought in Luxembourg. visitluxembourg.com/en/place…
1
5
Proposed spec on how to format SMS one-time codes: wicg.github.io/sms-one-time-…
It’s one thing to be divided politically, but it feels like we’re heading toward a physical split along ideological lines. npr.org/2020/04/18/837776218…
1
1
If you need a face mask and want to support ocean conservation, @PADI is taking pre-orders. Masks are made from recycled plastic and include 5 charcoal filters. padigear.com/collections/pad…
2
Looks like the main branch of a petrified tree root or vine, where the smaller branches have broken off and worn down. Cool find regardless!
1
Just two days left to submit to the OWASP Global AppSec San Francisco conference for presenting and/or training!
Only 1 week left to submit a talk or training for the @owasp Global AppSec conference in San Francisco! Be sure to check out the tracks, this year we have Security Governance AND Security Essentials! And we want first-time speakers, please submit! sf.globalappsec.org/
2
Faking a positive result on a COVID-19 test is a crime, plus you're a total asshat. Don't do it. Employers lose thousands (in one case, $175k) by shutting down and disinfecting. Co-workers also personally lose by going to Airbnb to self-quarantine. cnn.com/2020/04/14/politics/…
Replying to @iMeluny
The staff at @PADI feel your pain. youtube.com/watch?v=0vtRbGQR…
1
Replying to @ericgeller
CDMA and GSM are not end-to-end encryption protocols. Flip it around, it’s also widely understood that lawful interception can be abused. Greek wiretapping capability hacked: spectrum.ieee.org/telecom/se… FBI misled FISA court for wiretapping: nypost.com/2020/03/31/justic…
One of my favorite security conferences is going virtual for $25, which includes the conference AND the workshops! This is a steal! I spent well over $1000 to attend in previous years.
Registration for #SP20 is once again open! Registration will only be $25. We hope that this will make it possible for many more people, including students to attend this year's conference. This fee will also cover attendance to the workshops as well! na.eventscloud.com/ereg/inde…
1
I take the wins where I can. 🏆
I decided to do my taxes by the original deadline (today!) I feel much better having it done and behind me.
Replying to @jtrentadams
To be fair, you are really old.
1
Replying to @Clare_Brock
I think about this story from time to time. Wish collaboration across disciplines could happen more often. (Source: news.stanford.edu/news/2004/…)
1
All excellent trainers! I’m attending one of the trainings on threat modeling.
Improve your #Appsec skills for a great price! Visit our website today to register or learn more about OWASP Virtual Appsec Days and the 11 online training courses being offered. ow.ly/D7cN50zac5o
1
What's this? A "SECRET BUTTON" on the @ArizonaDOT website? If you find it and click it, you'll "pop" in surprise.
1
2
Replying to @sec_tigger @owasp
We’re planning for in-person, but will switch to virtual if needed. We ask submitters to be prepared to deliver either way.
3
Replying to @RobJHeaton
I’m guessing they’re trying to avoid a situation where they come out with a new feature or app, and a user claims the idea was stolen. Instead of defending that lawsuit, they’ll whip out the TOS and say they’re allowed to use it.
Replying to @ebellis
Easier than this older method. dilbert.com/strip/1994-06-07
1
Replying to @frgx @neil_conway
The only thing I hate more than enterprise pricing for features that should already come with 300 seats is being forced to buy through a reseller, thus ensuring I pay yet even more.
1