|
|
|
|
|
|
by bangbang
4657 days ago
|
|
|
The researcher rubs me the wrong way for a few reasons: 1. 15 days for a major company not nearly enough to remedy this issue. 2. The activity log reads like a ransom timeline. This isn't some l33t hacker exploit it's simple session hijack and mac spoof. You're not owed anything for finding this. Anyone that tries this could tread carefully. If you get caught (chances are slim), it wouldn't be hard to convince a jury that you're hacking an airborne plane's network. <fun hearted bit of sarcasm>
Did you know a bathroom lock is woefully insecure!?! Time to hold the government ransom about this exploit and collect my millions. If they don't pay, I'll post it on the internet.
</sarcasm> |
|
|
Here's my security disclosure for the day:
You can walk out of most stores without paying for their merchandise if you hide it in your pocket.
Which vendor do I talk to about getting paid for this information?