CISO at @sardineai. Treasurer of @OWASP Board of Directors. (he/him) qatta' mIghtaHghach.
Phoenix, AZ
Joined July 2009
- Tweets 8,305
- Following 139
- Followers 776
- Likes 17,402
Bil Corry retweeted
#ECJ: the Decision on the adequacy of the protection provided by the EU-US Data Protection Shield is invalidated, but @EU_Commission Decision on standard contractual clauses for the transfer of personal data to processors established in third countries is valid #Facebook #Schrems
28
1,485
511
1,235
I suspect something similar will be written about the 2020 pandemic.
youtube.com/watch?v=pMLNOK95…
The early Kodak digital cameras have a special place in my heart. Kodak was a client of mine and my company helped Kodak to build out a category of consumer device that didn't exist: digital cameras at computer and electronic stores.
spectrum.ieee.org/consumer-e…
Question: @BriannaWu, have you ever done a manual copy/paste of your password to log in? If not, unlikely it was phishing and more likely it was a compromised device.
Or perhaps someone has access to your 1Password account, especially if that password is weaker and lacks 2FA.
1
1
64-bits is not the same as 64-characters, but I agree, highly improbable, including if there’s a known weakness with how the password was chosen.
2
That doesn’t bode well, it means it was captured via phishing, sniffed via MitM, stolen via keylogger/malware, stolen from a place that has it stored, observed if you typed it in, or perhaps brute-forced. Regardless, that’s what 2FA is for, so congrats on excellent OpSec!
1
6
Wow, @american_girl has been so insanely generous with their free books. Our digital library now has 42 American Girl books to read.
And right now, they're featuring books with Black heroines, take a look!
americangirl.com/equality
Are you still able to log into it with your password? Curious if the password was reset somehow to a value the attacker knows.
2
5
Interesting look at why Intel, rather than TI or Motorola, powered the original IBM PC.
"The Inside Story of Texas Instruments’ Biggest Blunder: The TMS9900 Microprocessor"
spectrum.ieee.org/tech-histo…
Regarding the drone attack on Major General Soleimani, "the course of action taken by the US was unlawful."
My latest report to the UN #HRC44 focus on targeted killings by armed drones: ohchr.org/EN/Issues/Executio… The world has entered a “second drone age”, in which State and non-State actors are deploying ever more advanced drone technologies, a major international, security issue.
Does CLOUD Act with LAED Act mean UK can require backdoor access to US encrypted data with less than probable cause?
Sen. Tom Cotton on LAED:
“This bill will ensure law enforcement can access encrypted material with a warrant based on probable cause”
/cc @EFF
As of today, U.S. companies will now be receiving binding legal process directly from the UK government under the US-UK bilateral #CLOUDAct Agreement. For more information, see our June 9, 2020 blog post. blog.zwillgen.com/2020/06/09…
You haven't applied to @recurly, because our HoD worked her way up to the role. And we're currently looking for a Senior Product Designer.
jobs.lever.co/recurly/f1ca08…
1
6
If you look at the PDF, it has traffic signals that show green, yellow, or red. The 'R' column is contractual, the 'T' column is technical. You can see the PDF translated here:
translate.google.com/transla…
1
1
The services are not compliant.
Berlin #DataProtection Authority publishes results of short tests of video conference services.
Among others, the following services are marked "red": Cisco WebEx; Google Meet; GoToMeeting; Microsoft Teams; Skype; Skype for Business; Zoom.
datenschutz-berlin.de/filead… (pdf, German)
1
1