Forreal, I highly doubt CSC has a big bounty program so why did they even bother? Guaranteed they were the “Teacher you forgot our homework” kids
Comment on Two students find security bug that could let millions do laundry for free
jabathekek@sopuli.xyz 5 weeks agoSherbrooke and Taranenko reported the vulnerability
Finks >:(
cm0002@lemmy.world 5 weeks ago
SnotFlickerman@lemmy.blahaj.zone 5 weeks ago
Honestly, in this case, the company in question are even bigger finks because they don’t actually care about fixing a vulnerability that could cost them money.
If that speaks to their security practices, well… Let’s just say I wouldn’t be surprised if customer data was all in an unsecured, unencrypted, plain-text Microsoft Word document.
megaman@discuss.tchncs.de 5 weeks ago
Im very amused at it being in word rather than .xlsx or .txt, like them going out if their way to make it worse because word is all they know.
jabathekek@sopuli.xyz 5 weeks ago
“But word is a text file.”