Slashdot Mirror


Hacker Warns Starbucks of Security Flaw, Gets Accused of Fraud

Andy Smith writes: Here's another company that just doesn't get security research. White hat hacker Egor Homakov found a security flaw in Starbucks gift cards which allowed people to steal money from the company. He reported the flaw to Starbucks, but rather than thank him, the company accused him of fraud and said he had been acting maliciously.

2 of 107 comments (clear)

  1. disclosure by Lehk228 · · Score: 5, Interesting

    more proof that responsible disclosure is foolish unless you are delaing with an organization you already have a solid IT/security relationship with.

    in any other situation, just post the exploit kit anonymously and make a bowl of popcorn

    --
    Snowden and Manning are heroes.
  2. Security wall of shame by Kardos · · Score: 4, Interesting

    Looks like we need a security wall of shame that lists the response to flaw disclosures of each organisation, so people can quickly determine which companies will fix a flaw upon receiving a report, and which companies are hostile and should not be contacted.