Skip to content
Better HN
Top
Best
Ask
Show
New
Jobs
Search
⌘K
0 points
didntcheck
2y ago
0 comments
Save
Share
To give the benefit of the doubt, it appears he only contacted them less than 48 hours ago. Their first priority should correctly be to fix the problem. They could be discussing a bug bounty right now and just haven't finalized the email yet
0 comments
3 comments · 2 top-level
top
newest
oldest
pge
2y ago
· 1 in thread
American readers may not have noticed that the dates are in European DD/MM format, so they thought disclosure was Sept 1 rather than Jan 9.
MrDunham
2y ago
I 100% saw it as MM/DD and was wondering why it took them three months to write up the vulnerability and a month to patch it.
Thanks for the clarification
zopa
2y ago
“Thanks for coming to us with this, we’re looking at it right away” wouldn’t take a lot of time or commit then to anything
j
/
k
navigate · click thread line to collapse
