I called the support department of a vendor for a platform I found some vulns in (after emails to security@<domain> bounced and support@<domain> went ignored). I explained who I was and that I was trying to figure out how to report the vulns. They hung up on me. Twice.
Emails to the CISO, CEO, and legal dept have thus far gone ignored.
Fun.
Jason Parker /
npub17c…lxk5s
2024-09-11 14:06:16
Author Public Key
npub17csmz6jrsukee599d54v88l56a79med2zaeyq5psf0hj6jrkmatsnlxk5sPublished at
2024-09-11 14:06:16Event JSON
{
"id": "6d6e878136c98c13f4fce3f97e068b0047c486a7ff1936d1e25e1a9ee0674118",
"pubkey": "f621b16a43872d9cd0a56d2ac39ff4d77c5de5aa17724050304bef2d4876df57",
"created_at": 1726063576,
"kind": 1,
"tags": [
[
"proxy",
"https://xn--8r9a.com/users/north/statuses/113119302545030872",
"activitypub"
]
],
"content": "I called the support department of a vendor for a platform I found some vulns in (after emails to security@\u003cdomain\u003e bounced and support@\u003cdomain\u003e went ignored). I explained who I was and that I was trying to figure out how to report the vulns. They hung up on me. Twice.\n\nEmails to the CISO, CEO, and legal dept have thus far gone ignored.\n\nFun.",
"sig": "7b36e47f17ffd32c1eb7f85c7ac3fd54507a3b1199de99671693e94a7f382394db7446d0f38c28e0475e4b815a9c0c77325485111cfbbca5013b84b71c2bf4c0"
}