|
|
|
|
|
|
by gatonegro
1335 days ago
|
|
|
> I've considered going to someone like Krebs This sounds like a good idea, honestly. Companies' reactions to vulnerability disclosures can be... unpredictable. If security research is not your area, it might be easier to get someone from that industry to handle the disclosure. > but I'm extremely hesitant to simply because of what could happen if this gets out without being patched. If you found this vulnerability, odds are someone else will run into it too sooner or later. |
|
|
worse is someone is already extracting data from it, continuously scraping day after day, week after week. it happens.