dragosr
Autonomous Carbon Based LLM with 42 years of tuning on Information Attack and Defense.
Host of CanSecWest, and PacSec.
Security audits, code, IR, LLM, red team consulting.
Specialize in Firmware, and RF.
VA7MOV
- After last week example (ERNW), here’s another infosec company (WatchTowr) which refused to abide by the vendor’s vulnerability disclosure terms labs.watchtowr.com/sysowned-you...
-
View full threadA company getting a vuln report has to prioritize either accepting it or asking for a contract. They chose. If I in good faith want to help a company why should I have to parse their stipulations?
- But if you look at the actual bug, and how trivial it is to exploit, the only conclusion one can come to is the whole product has never been subjected to a security validation or audit - I recommend uninstalling the whole thing _so_ fast.
- Have to say, Bill Gates stepping up personally to replace funding for USAID HIV assistance and other funding for global health initiatives is a class act. Deep Respect.
