Germany 3k fine for notifying company of hardcoded sql creds

disclose / research-threats

Collection of legal threats against good faith Security Researchers; vulnerability disclosure gone wrong. A continuation of work started by @attritionorg

https://threats.disclose.io/

Creative Commons Zero v1.0 Universal

280 stars 19 forks source link

Germany 3k fine for notifying company of hardcoded sql creds #55

Open meme-lord opened 6 months ago

meme-lord commented 6 months ago

https://www.heise.de/news/Warum-ein-Sicherheitsforscher-im-Fall-Modern-Solution-verurteilt-wurde-9601392.html https://infosec.exchange/@WPalant/111776937550399546

2024-01-18	JTL Software(?)	Unnamed	A security researcher found hardcoded credentials for MySQL server. The company took him to court and he was fined Click here for news article.