Bil Corry @bilcorry

CISO at @sardineai. Treasurer of @OWASP Board of Directors. (he/him) qatta' mIghtaHghach.

 Phoenix, AZ
linkedin.com/in/bilcorry/
Joined July 2009
  • Tweets 8,305
  • Following 139
  • Followers 776
Load newest
I'm not sure if @TradeStation product team is purposely trying to make the friction so high that I'll give in and hand over my banking credentials, or if they just don't care, but the experience has been entirely a negative one.
1
So I refuse to do it. Most of the time, there's an alterative flow where it's validated using small deposits, but it takes a few days. Except @TradeStation, they make you fill out a paper form. After two weeks and 4 submissions, I still haven't linked my bank account.
1
An appsec anti-pattern I absolutely hate is asking users to turn over their financial credentials to "verify" account ownership, such as adding a bank account (think @Plaid and @Yodlee). This habituates users to give away their credentials, NOT something we want to teach them.
1
1
Replying to @bilcorry @oliviasolon @darkpatterns
You can complain to @Visa and @Mastercard about the merchant violating their terms. consumerist.com/2007/12/12/h…

How To Report Merchants For Requiring A Minimum Purchase Or Making You Show ID

Stores are violating their contract with the credit card companies if they set minimum or maximum charges, or force you to show ID in addition to your credit card (with…

consumerist.com
1
Replying to @oliviasolon @darkpatterns
Did you pay with @Visa or @Mastercard? They both have rules merchants must follow to prevent this exact issue. usa.visa.com/dam/VCOM/global… newsroom.mastercard.com/2019…
1
1
Why people working in Information Security struggle to sound friendly. It’s a stressful job.
Vanessa Van Edwards
 @vvanedwards
30 Nov 2021
I've always loved Morgan Freeman's voice...and now I know why. #Yawning ! What? It's true @morgan_freeman says it is the key to his vocal likability because it keeps his vocal chords relaxed. I breakdown all of #MorganFreeman cues in my latest video! scienceofpeople.com/morgan-f…
1
$30 buys you a great set of books about hacking and supports charity. humblebundle.com/books/hacki…
3
1
Replying to @jeremiahg
Idaho is looking beautiful.
Replying to @randomdross
True story, I used to help operate a BBS and we published our own magazine. I should scan those in.
1
Replying to @ndm
Wish there was someone who could do a one hour talk on all of those and why companies should adopt them.
Replying to @maddy_mantsch @RL_Stine
Haha, thanks!
2
Replying to @rauschma @darkpatterns
There’s always devtools to delete these annoying overlays from the DOM, but yeah, would be far better if devs just made a useable site.
1
Replying to @randomdross @ivanristic
You forgot the AI component.
1
This is from the Casper Star-Tribune (August 18, 1921). The "overseer" mentioned is Wilbur Glenn Voliva, who took control of Zion, IL and the church then lived a lavish lifestyle until forced into bankruptcy. Later on his deathbed he confessed to theft. en.wikipedia.org/wiki/Wilbur…
Replying to @jackie_lef @yaelwrites @j_winterton @toool
Let’s do it at CactusCon then. That makes it easy.
1
3
Omegle allowed child user to become pedophile's digital sex slave: suit nypost.com/2021/11/19/omegle…

Omegle allowed child user to become pedophile's digital sex slave:...

Omegle, a chat site that encourages kids to “talk to strangers,” is a creepy destination that helped an 11-year-old girl forced to become a predator's digital sex slave, a multi-million dollar...

nypost.com
3
4
1
14
Replying to @yaelwrites @jackie_lef @j_winterton @toool
How soon were you thinking? You mentioned next year. CactusCon is in early February, we could meet there. If we want something sooner, Saturday, December 18 is open for me.
1
Replying to @yaelwrites @jackie_lef @j_winterton @toool
Never been there, but I’m guessing if we’re spending money, they’re not going to care?
1
2
Replying to @bilcorry @yaelwrites @jackie_lef @j_winterton @toool
Or picnic tables at a park?
1
Replying to @bilcorry @yaelwrites @jackie_lef @j_winterton @toool
I called, they were not open to it. Maybe a restaurant instead?
1
Load more