sydseter7h ago

RE: https://mastodon.social/@sydseter/116656629111007227

We want to support OWASP chapters running Cornucopia games on their community events so they learn to use games to teach devs and testers about threat modelling. Having funds makes it possible to support them. Currently, that's not possible.

We have threat-modelling scenarios, posters, presentations, and vulnerable apps you can use to run a game at an event. All you need is Cornucopia decks.

#appsec #security #threatmodeling #cybersecurity #games

Uncle Joe7h ago
We want to support OWASP chapters running Cornucopia games on their community events so they learn to use games to teach devs and testers about threat modelling. Having funds makes it possible to support them. Currently, that's not possible. #appsec #security #threatmodeling #cybersecurity #games

RE: https://bsky.app/profile/did:plc:7k77tosrpmglnkacag5dtago/post/3mmxybqqj4s25
Show threadsydseter11h ago

Whether you're a sec vendor, consultancy, or just passionate about improving security—this is a chance to give back and gain visibility where it matters.

If that sounds interesting, now’s the perfect time to step in and deal yourself a winning hand.

1. Know a company that should jump on this? Tag them below
2. Curious about sponsoring? Let’s get the conversation going

Learn more at: https://cornucopia.owasp.org/news/20260525-become-a-cornucopia-sponsor#Enhance-Your-Brand%E2%80%99s-Commitment-to-Security-by-Sponsoring-OWASP-Cornucopia

#OWASP #appsec #security #threatmodeling #opensource #cybersecurity #games

OWASP Cornucopia - News

Stay updated with the latest news and updates from OWASP Cornucopia.

Show threadsydseter11h ago

That means there’s a golden opportunity for a forward-thinking company to:

-> Support a globally recognised OWASP project.
-> Help make secure development accessible (and enjoyable!).
-> Get your logo on the Cornucopia decks used by teams worldwide.

Imagine your brand sitting on desks during threat modelling sessions, workshops, and sec training across the globe.
Not a bad place to be, right?

#OWASP #appsec #security #securityculture #threatmodeling #opensource #cybersecurity #games

sydseter11h ago

Calling AppSec heroes, card sharks, and generous sponsors! 🃏

You’ve probably seen OWASP Cornucopia — the fun, practical card game that helps teams bake secure coding into everyday conversations. It turns threat modelling into something people actually want to do. Yes, really.

But here’s the twist…

The project is currently missing a sponsor.

#OWASP #appsec #security #securityculture #threatmodeling #opensource #cybersecurity #devsecops #games

(Learn more: https://cornucopia.owasp.org/news/20260525-become-a-cornucopia-sponsor#Enhance-Your-Brand%E2%80%99s-Commitment-to-Security-by-Sponsoring-OWASP-Cornucopia)

Show threadUncle Joe3d ago
At copi.owasp.org, you can play Elevation of MLSec, which helps you map the risks associated with machine learning (ML) that have been identified by BiML. Read all about how here: dev.to/owasp/threat... #security #appsec #threatmodeling #ai #machinelearning #ml #games

Does the AI do the threat mode...
Copi · Play Cornucopia Online

Uncle Joe3d ago
Did you read "No Security Meter for AI" (ref: berryvilleiml.com/docs/no-secu...) If you did, you know that AI should not handle the threat modelling for your software without you double-checking the output. #security #appsec #threatmodeling #ai #machinelearning #ml #games

berryvilleiml.com/docs/no-secu.....
sydseter3d ago

Did you read "No Security Meter for AI" (ref: https://berryvilleiml.com/docs/no-security-meter-ai.pdf)

If you did, you know that AI should not handle the threat modelling for your software without you double-checking the output.

At copi.owasp.org, you can play Elevation of MLSec, which helps you map the risks associated with machine learning (ML) that have been identified by BiML through play.

Read all about how here: https://dev.to/owasp/threat-modeling-your-ai-models-using-ai-29e1

#security #appsec #threatmodeling #ai #machinelearning #ml #cornucopia #games

Uncle Joe3d ago
Did you read "No Security Meter for AI" (ref: berryvilleiml.com/docs/no-secu...) If you did, you know that AI should not handle the threat modelling for your software without you double-checking the output. #security #appsec #threatmodeling #ai #machinelearning #ml

berryvilleiml.com/docs/no-securi...
Charlon6d ago

WhatsApp a ajouté Strict Account Settings pour les personnes exposées à des attaques rares mais sophistiquées, comme les journalistes ou personnalités publiques.

Le mode pousse le compte vers des réglages plus restrictifs : médias inconnus bloqués, appels inconnus silencieux, comportements plus limités.

Le signal produit : la bonne sécurité dépend du threat model. Pour un compte ciblé, la friction peut être le produit.

#Security #Privacy #ThreatModeling