CISO at @sardineai. Treasurer of @OWASP Board of Directors. (he/him) qatta' mIghtaHghach.
Phoenix, AZ
Joined July 2009
- Tweets 8,305
- Following 139
- Followers 776
- Likes 17,402
Bil Corry retweeted
I think everyone could use a lighthearted/happy story right now so here goes:
At the beginning of the pandemic I went through some painful personal stuff and would often go out at night for long walks because no one was around and I couldn’t sleep anyway. One night I was walking
7,742
86,569
46,547
372,129
We just watched Elf with my youngest for the first time. We laughed, but she didn’t get most of the jokes. Hopefully it goes better for you.
US military also buys app location data. That’s why vendor contracts are increasingly demanding single country data access and storage, to prevent leaking of military/government personnel data.
Today's digital advertising based on selling user data to the highest bidder has been called the 'largest data breach ever', and yes:
Two firms who sell targeted+mass surveillance to governments are hoovering phone location data from the ad/rtb bidstream: forbes.com/sites/thomasbrews…
Grades are detrimental to real learning and thinking.
“Grades don’t prepare children for the ‘real world’ — unless one has in mind a world where interest in learning and quality of thinking are unimportant.”
alfiekohn.org/article/case-g…
Brexit impact on .eu domains (spoiler: you cannot have .eu domains if no EU presence)
eurid.eu/en/news/brexit-eu-d…
1
2
Bil Corry retweeted
Cross-Origin Isolation is foundational to security against side-channel attacks (Spectre, et al). Camille Lamy has lead its implementation in Chromium, and will help you understand how to enable it for your sites in ~13 minutes (20:40 CET, 11:40 Pacific): youtube.com/watch?v=NkIi7h8N…
1
7
1
38
A friend and I took the same class at the same time, but two different teachers. He wrote papers and had pop quizzes. I had a couple of easy tests. I got an A without trying, he got a B. Very subjective and not worth the stress.
@TwitterSupport This ad has flashing lights that can trigger seizures.
Groove and move with #TheMaskedDancer! 🕺
It’s an all-new twist on your favorite show — premiering, Sunday, December 27 on @FOXTV.
Bil Corry retweeted
Here's how hackers are now hiding malicious payment card skimming code inside CSS files on the compromised e-commerce sites.
#tech #infosec #cybersecurity #100DaysOfCode #programming #DEVCommunity
After finding skimmers in SVG files last week, we now discovered a #magecart skimmer in perfectly valid CSS. It is parsed and executed during checkout. Malware loaded from cloud-iq[.]net (faking @cloudIQApps)
1
165
2
92
Bil Corry retweeted
It's exciting to see Encrypted Client Hello coming closer to reality--one more tracking vector on the way to being squashed. Still a ways to go and lots of testing before real-world use (spec is not final).
Over the last few months I've been helping to move forward the Encrypted Client Hello extension, which brings full handshake encryption to TLS 1.3. Making deployed crypto more secure is hard, but rewarding work. Follow along here: blog.cloudflare.com/encrypte…
1
10
Every generation for thousands of years thought kids were ruining things, described by the authors as a "pervasive illusion of humanity."
advances.sciencemag.org/cont…
The original TEE used to include Lux, and there are plenty of commuters into Lux from BE, FR, and DE, plus CJEU is there, seems like it could be easily added and is odd it wasn’t. But maybe the cost/benefit isn’t there...