Home page logo
/

funsec logo funsec mailing list archives

Re: Youth expelled from Montreal college after finding "sloppy coding" that compromised security of 250, 000 students personal data
From: Rich Kulawiec <rsk () gsp org>
Date: Tue, 22 Jan 2013 08:14:34 -0500

On Tue, Jan 22, 2013 at 11:05:39AM +0000, Jim Murray wrote:
Bad example to set for others - these companies really need to think
before they reach for the lawyer.

Yep.  Add to this the appallingly stupid non-concept of "responsible
disclosure" and it becomes clear that companies are 100% concerned about
profits and 0% concerned about security.  One of the most galling things
about that story is that this statement from the company CEO (Edouard Taza):

        "We acted immediately to fix the problem, and were able to do
        so before anyone could use it to access private information."

was not challenged by the article's author, since it is of course an
obvious fabrication.

---rsk

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]