Madshrimps Forum Madness

Madshrimps Forum Madness (https://www.madshrimps.be/vbulletin/)
-   WebNews (https://www.madshrimps.be/vbulletin/f22/)
-   -   Security company sues Ars Technica for reporting bug (https://www.madshrimps.be/vbulletin/f22/security-company-sues-ars-technica-reporting-bug-171756/)

Stefan Mileschin 24th December 2017 05:53
Security company sues Ars Technica for reporting bug
 
Insists that bug in Keeper could not steal password.

Keeper, a password manager software maker, has filed a lawsuit against a tech reporter and Ars Technica over reporting a vulnerability disclosure in its product.

According to ZDNet Dan Goodin, security editor at Ars Technica, was named defendant in a suit filed Tuesday by Chicago-based Keeper Security, which accused Goodin of "false and misleading statements" about the company's password manager.

Goodin’s story was published in December 15, and quoted Google security researcher Tavis Ormandy, who said in a vulnerability disclosure report he posted a day earlier that a security flaw in Keeper allowed "any website to steal any password" through the password manager's browser extension.

When Ormandy tested the bundled password manager, he found a password stealing bug that was nearly identical to one he previously discovered in 2016. He posted a proof-of-concept exploit for the new vulnerability.

http://fudzilla.com/news/45255-secur...-reporting-bug


All times are GMT +1. The time now is 14:56.

Powered by vBulletin® - Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO