CISO at @sardineai. Treasurer of @OWASP Board of Directors. (he/him) qatta' mIghtaHghach.
Phoenix, AZ
Joined July 2009
- Tweets 8,305
- Following 139
- Followers 776
- Likes 17,402
Proud to work for Sardine! If you want to know more about what we do, listen to this 👇
another amazing episode!
this time w/@sardine ceo @soupsranjan
financial fraud and hacking are much scarier in the age of generative ai.
as much as gen ai empowers good actors, it does the same for bad actors.
so, soups is building a platform to counter and prevent them!
he breaks down to @Jason the amazing ways in which @sardine tracks and stops fraud:
Favorite Bob Barker moment (from his show in 1980s).
A contestant wearing a tube top was jumping up and down in excitement.
Bob tells her, "Be careful young lady, I had another contestant wearing a similar top and what popped out wasn't her car keys."
nytimes.com/2023/08/26/arts/…
Probably not visible, but ask how many books removed from library, which topics are not allowed to be taught.
Multiple age groups in class, older kids helping younger kids.
PE is cooperative and inclusive.
Lunch menu is healthy, not relying on ketchup to be a veg.
Great way to recruit for your open AppSec roles!
⚡ Is your company hiring? The #OWASP Career Fairs are an excellent opportunity for companies seeking new talent! Recruiters can showcase their job opportunities and network with potential candidates. owasp.org/events/career_fair #jobfair #hiring #careerfair
When I owned AppSec at PayPal, we used Juice Shop for an internal CTF for our developers.
Had the highest engagement and positive feedback out of everything we had ever done.
OWASP Spotlight - Project 25 - OWASP Juice Shop
youtube.com/--50rE76EeA?feature…
@bkimminich @infosecvandana
2
4
It isn't fixed for me. If your site asks for 2FA, I can sign in. If your site doesn't ask for it, I can't sign in.
Nothing in devtools. Turns out it works when I have to 2FA into the site (they send an email with a code). If the site does not ask for the 2FA, I can't log in, including Incognito. Not sure why Incognito doesn't always trigger 2FA but it doesn't.
I think it started a month or two ago, I didn't notice because I thought you were just constantly taking your site down.
1
@AmericanAir Not sure what happened, but I can no longer log into your site using Chrome, I get the below screenshot. If I use Incognito mode it works, but that's annoying. Clearing cookies and local storage, plus turning off extensions didn't fix it.
3
@peacock This email promotion doesn't work. Following the link goes to the normal signup page for $5.99/mo.
1
2
Keep in mind Discord was not breached, but an unaffiliated site called discord.io was breached.
1
1