Greg Balnis on Cybersecurity's Avatar

Greg Balnis on Cybersecurity

@cybersecurity.balnis.eu

#cybersecurity #appsec #privacy #dataprotection

27
Followers 100
Following 6
Posts 27.11.2024
Joined
Posts Following

Latest posts by Greg Balnis on Cybersecurity @cybersecurity.balnis.eu

Preview
SE Radio 642: Simon Wijckmans on Third-Party Browser Script Security Software Engineering Radio - the podcast for professional software developers Β· Episode

What's wrong with these 3rd party scripts? Something to share with our marketing colleagues, maybe they'll finally get it... 😑
#appsec #asvs10.3.2 #asvs14.2.3
open.spotify.com/episode/111q...

17.12.2024 16:24 πŸ‘ 0 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Preview
Web Application Security for DevOps: Anti-CSRF and Cookie SameSite Options | Bitsight Continuing our web app security series: explore POST requests and how logging out works with cookies and session IDs and more.

Web Application Security for DevOps: Anti-CSRF and Cookie SameSite Options
#appsec #asvs3.4.3 #asvs4.2.2
www.bitsight.com/blog/web-app...

13.12.2024 12:57 πŸ‘ 0 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Post image

OWASP Members change the world. Your membership helps shape the organization and drives our projects and community. If you are not a member or are due for renewal within 60 days, please join or renew today and get 10-25% off!

owasp.org/membership > Memberships > Apply

12.12.2024 19:33 πŸ‘ 54 πŸ” 20 πŸ’¬ 1 πŸ“Œ 1
Preview
Microsoft Recall screenshots credit cards and Social Security numbers, even with the "sensitive information" filter enabled Despite promising to filter personal data out, Recall still captures it.

oh hey that thing we said was a bad idea is a bad idea

13.12.2024 01:51 πŸ‘ 801 πŸ” 337 πŸ’¬ 23 πŸ“Œ 35
Preview
2024 State of Open Source Security Report | Snyk Snyk’s annual SoOSS report reveals trends in the software industry’s approach to securing open source software (OSS).

Β»"AppSec exhaustion" phenomenon, evidenced by declining engagement in security measures and widespread failure to meet vulnerability management goals, suggests that current approaches to security may be unsustainable.Β«
#AppSec #Cybersecurity #SupplyChainSecurity
snyk.io/lp/state-of-...

12.12.2024 05:14 πŸ‘ 1 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0

Protip: When a security researcher is giving a talk and they say "However..." or "Unfortunately...", sit up and pay attention, because things are about to get real. #blackhatEU

11.12.2024 10:29 πŸ‘ 129 πŸ” 27 πŸ’¬ 2 πŸ“Œ 0
Preview
Starting reading the AI Snake Oil book online today The book will be published on September 24

Absolutely a must read, unpacking artificial intelligence and breaking it down to what works, what may work and what is a total bs.
#ArtificialIntelligence #AIHype #AIBooks
www.aisnakeoil.com/p/starting-r...

08.12.2024 10:04 πŸ‘ 0 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0

Exploring client side storage #appsec #asvs #asvs8.2.2 #asvs8.2.3

01.12.2024 06:19 πŸ‘ 1 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Preview
Notable Privacy and Security Books 2024 Here are some notable books on privacy and security from 2024. To see a more comprehensive list of nonfiction works about privacy and security for all

Notable Privacy and Security Books in 2024
teachprivacy.com/notable-priv... #privacy #cybersecurity #datasecurity #AI

29.11.2024 17:29 πŸ‘ 27 πŸ” 10 πŸ’¬ 1 πŸ“Œ 3
Preview
Updates to Strava’s API Agreement

Interesting how people are complaining about the change to Strava API terms of use without explaining how they are bad for the users. All I see is people crying how inconvenient it is for their business.
#strava #stravaapi #privacy #dataprotection
press.strava.com/articles/upd...

30.11.2024 06:19 πŸ‘ 1 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
How to play OWASP Cornucopia
How to play OWASP Cornucopia YouTube video by OWASP Foundation

How do I play OWAS Cornucopia without any knowledge of threat modeling or owasp?

You will find that it is surprisingly easy just watch this video by Grant Ongers.

m.youtube.com/watch?v=XXTP...

#cybersec #appsec #owasp #infosec #threatmodeling #cornucopia #gameification

29.11.2024 06:24 πŸ‘ 25 πŸ” 5 πŸ’¬ 0 πŸ“Œ 1