Home page logo
/

funsec logo funsec mailing list archives

Youth expelled from Montreal college after finding "sloppy coding" that compromised security of 250, 000 students personal data
From: Rich Kulawiec <rsk () gsp org>
Date: Mon, 21 Jan 2013 10:26:08 -0500

(h/t to Nadim Kobeissi)

        Youth expelled from Montreal college after finding "sloppy coding" that compromised security of 250,000 
students personal data
        
http://news.nationalpost.com/2013/01/20/youth-expelled-from-montreal-college-after-finding-sloppy-coding-that-compromised-security-of-250000-students-personal-data/

Same old story, complete with the customary vacuous denial-by-assertion:

        "We acted immediately to fix the problem, and were able to do
        so before anyone could use it to access private information."

Riiiiiiight, so you weren't good enough to avoid creating the vulnerability
in the first place, yet you are somehow omniscient enough to know that
nobody, that's right, NOBODY, exploited the hole before you fixed it.

---rsk

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]