Slashdot Mirror

← Back to Stories (view on slashdot.org)

Is Paying Hackers Good for Business?

Posted by Zonk on from the moral-quandry dept.

Jenny writes "In the light of the recent QuickTime vulnerability, revealed for $10,000 spot cash, the UK IT Security Journalist of the Year asks why business treats security research like a big money TV game show. 'There can be no doubt that any kind of public vulnerability research effort will have the opportunity to turn sour, both for the company promoting it and the users of whatever software or service finds itself exposed to attack without any chance to defend itself. Throw a financial reward into the mix and the lure of the hunt, the scent of blood, is going to be too much for all but the most responsible of hackers. There really is no incentive to report their findings to the vulnerable company, and plenty not to. Which is why, especially in the IT security business, there needs to be a code of conduct with regard to responsible disclosure.' Do you think there's any truth to this? Or is it a better idea to find the vulnerabilities as fast as possible, damn the consequences?"

1 of 94 comments (clear)

  1. Re:FUCK YOU AMERICA! by ShrapnelFace · · Score: 0, Offtopic

    I'm sick of international people who use the word "American" to typify a country and cultural without considering that in fact they just characterized an entire geographic area with flame.

    If I am incorrect to assume that you are from outside a place, which I can only guess is the United States of America due to your vague off-topic tirade, then:

    FIRST: I owe you an apology for assuming that you arent from here. Threats like these either come from foreign governments or aspiring socialists.

    SECOND: If you are a citizen, there are many places you can move to after you renounce your citizenship- which I encourage you to do ASAP. There is Canada and Venezuela if you don't want to travel too far- please note that these are both good choices for socialists and liberals alike.

    In closing I would like to remind you that despite your cry for improvements, you have neglected your self imposed responsibility by not educating yourself on the finer points of education. First and foremost, you are not only speaking out of turn but severely off topic and in a secular forum. But secondly, you seem to have a contextual impression that everything is related to everything else, and there are no singular independences at work in the world that we live in.

    Blame yourself for your own short-comings because there is not a single government (not even North Korea) that can compensate for a low investment in due dilligence that has fed your unusually low self esteem.

    In short, you sir go fuck yourself, and I hope to God that there is a bus out there with your name on it waiting for that fateful day when you step off the curb without looking and runs you over.

    God Bless America and all the legal citizens who belong here.