|
|
|
|
|
|
by MichaelGG
4465 days ago
|
|
|
They addressed that here[1]. Sending invoices to lists of clients is specifically something they want to allow. And anyways, an attacker could simply sign up for multiple accounts. I don't think much of Coinbase technically (terrible execution in the past, use of MongoDB), but this breathless report is really overhyping an minor design decision on Coinbase's part. 1: https://hackerone.com/reports/5200 |
|
|