OWASP founder: Focus on the top issues