[OWASP-Bangalore] Why full/public disclosure of WebAppSec hack/vulnerability !
raxitsheth2000 at gmail.com
Thu Jun 25 12:07:13 EDT 2009
On this sunday(21st jun 2k9), found few critical personal data open on
Outlook Money website which i twitted After it has been fixed etc.. [i.e.
first it is fixed and then i twitted !!! just to avoid any confusion.]
Now i just wanted to know why to put disclosure or bring this to public
(After it has been fixed !) ? [if they are not fixing and to force them to
fix, doing public disclsure is fine ...But once they have done the fix...
Should one ?]
Open for thoughts !
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the OWASP-Bangalore