Monday, February 1, 2016

Doofus Of The Day #878

Today's award goes to Google.  In a recent Online Security Blog entry, the organization admitted:

Tomasz Bojarski found 70 bugs on Google in 2015, and was our most prolific researcher of the year. He found a bug in our vulnerability submission form.

There's more at the link.

How embarrassing it must be to make available an online security vulnerability report form, only to have the form itself identified as buggy!  Kudos to Google, though, for being willing to admit it.  Some organizations would have done all they could hide it.



Quentin said...

Yes, full credit to Google for being open and honest.

Borepatch said...

Actually, this raises their credibility. Yes, there's some irony here in that it was the vulnerability submission form but their openness creates a track record. You don't get that when you hide things.