10:51 Comments on the article cnews «hole in mail ru close blackmail» | |
Good afternoon, Yesterday I posted an article "small problems big companies." I could not have thought that publication of such simple vulnerabilities would cause such a storm of emotions. The sole purpose of this article was to tell you that apart from security concerns services, there is also a security issue of end-users. The same day I was contacted by the user Skip_C_Dragg, who introduced CNews journalist and asked to answer a few questions. I think it was my biggest mistake. Cut out from the context of my response, the portal Cnews published an article "Holes" in mail.ru forced to close blackmail. Vulnerabilities are not critical for the company, they are critical only for the user, who is purposefully carry out attacks. And that is why I have decided to publish them. That's what I wrote in response to a journalist: "All these vulnerabilities are not so critical for the company as critical to the user. Nobody wants that its data could be used to destroy or in any way. "Indeed, I have published, not all vulnerabilities, but as I told a journalist, I'm not going to publish one new vulnerability or without prior notice to management portal:" I do not going immediately to publish the rest of vulnerability, of course, first I'll post again information management portal, so I have always done. So do not think that "blackmail" the right word for it. ". In response, the journalist said, "Well, yes," blackmail "- not quite on the merits, but the title - not really my expertise." The word blackmail, used in the title of the article unlawfully. Declare that I have never sent and was not going to send threats to the company Mail.RU. I never threatened the company Mail.RU and demanded money for their services. All the reports I have given the company Mail.RU at no charge. I hope this will confirm the official representatives. Yesterday, I was contacted by employee Mail.RU and thanked for this report. He also said that "place within the company, where your stuck in the past reported holes, too, found". After that, I removed all the details about the vulnerabilities of the article. Unfortunately, the journalist who no longer respond to my letters. I hope he reads this section, so please consider writing a formal request for retraction of the information contained in the article on the site CNews, as well as clarification of details, which are "modestly concealed." UPD. Thanks to everyone who supports me! I beg you not to lynch a journalist, after the publication of this article, he contacted me and has really done everything that depends on it, at this point in the article, the words of what I have in the future I will inform the leadership of the portal prior to publication. Perhaps this is the only case in which the most important letter gets in the spam. Unfortunately, the article title does not fall within the competence of the journalist and he can not fix. UPD. 15/09/2010, 19:00 Maxim Kazak, CNews editor sent me a reply to my letter. Editor in Chief CNews instructed to replace the word "blackmail" to "passed made public. I hope that even today I see a changed header. I think that this story is most to blame myself, and in the future I will definitely follow the advice in user dime. Thank you all! UPD. 16/09/2010, 15:40 The word "blackmail" removed from the title of the article CNews! I want to thank the leadership CNews for understanding and decision making. | |
|
Total comments: 0 | |