Monday, February 1, 2016

Doofus Of The Day #878


Today's award goes to Google.  In a recent Online Security Blog entry, the organization admitted:

Tomasz Bojarski found 70 bugs on Google in 2015, and was our most prolific researcher of the year. He found a bug in our vulnerability submission form.

There's more at the link.

How embarrassing it must be to make available an online security vulnerability report form, only to have the form itself identified as buggy!  Kudos to Google, though, for being willing to admit it.  Some organizations would have done all they could hide it.

Peter

2 comments:

  1. Yes, full credit to Google for being open and honest.

    ReplyDelete
  2. Actually, this raises their credibility. Yes, there's some irony here in that it was the vulnerability submission form but their openness creates a track record. You don't get that when you hide things.

    ReplyDelete

ALL COMMENTS ARE MODERATED. THEY WILL APPEAR AFTER OWNER APPROVAL, WHICH MAY BE DELAYED.