Forreal, I highly doubt CSC has a big bounty program so why did they even bother? Guaranteed they were the “Teacher you forgot our homework” kids
Comment on Two students find security bug that could let millions do laundry for free
jabathekek@sopuli.xyz 8 months agoSherbrooke and Taranenko reported the vulnerability
Finks >:(
cm0002@lemmy.world 8 months ago
SnotFlickerman@lemmy.blahaj.zone 8 months ago
Honestly, in this case, the company in question are even bigger finks because they don’t actually care about fixing a vulnerability that could cost them money.
If that speaks to their security practices, well… Let’s just say I wouldn’t be surprised if customer data was all in an unsecured, unencrypted, plain-text Microsoft Word document.
megaman@discuss.tchncs.de 8 months ago
Im very amused at it being in word rather than .xlsx or .txt, like them going out if their way to make it worse because word is all they know.
jabathekek@sopuli.xyz 8 months ago
“But word is a text file.”