----- Original Message -----
From: "Brian Eaton" <eaton.lists () gmail com>
To: full-disclosure () lists grok org uk
Subject: Re: [Full-disclosure] Who Do I Contact?
Date: Sat, 22 Apr 2006 12:52:14 -0400
On 4/22/06, CrYpTiC MauleR <crypticmauler () linuxmail org> wrote:
I am sorry I am not going to say who the school is. Mainly because so many
socials numbers are at risk including mine. I have contacted the
VP of Information
Technology and he assured me he would call the company that makes
After 20 days the hole was not fixed, so I called the department heads and am
giving them 48 hours from then which is now currently at 24 hours
before I move
onto notifying someone else. I was also thinking about contacting
FBI about this
seeing they handle school breaches but not sure.
How about notifying the school newspaper? Take a tech savvy reporter,
prove to them the hole exists, and let them get some quotes from the
VP of IT explaining exactly what the school is doing to fix the
A little sunshine can have some wonderful effects.
Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia - http://secunia.com/