i didn't say that, i said there are established channels for reporting such things and going outside those channels carries risks.
edit*
my bad... i read your comment wrong.
i could be wrong, but i think you meant to say "Why should I trust any company that sues security researchers for reporting a vulnerability?"
i agree that that would totally suck.
i didn't say that, i said there are established channels for reporting such things and going outside those channels carries risks.
edit*
my bad... i read your comment wrong.
i could be wrong, but i think you meant to say "Why should I trust any company that sues security researchers for reporting a vulnerability?"
i agree that that would totally suck.