this post was submitted on 28 Jul 2025
18 points (95.0% liked)

Hacker News

2242 readers
381 users here now

Posts from the RSS Feed of HackerNews.

The feed sometimes contains ads and posts that have been removed by the mod team at HN.

founded 11 months ago
MODERATORS
patrick@lemmy.bestiver.se
rssbot@lemmy.bestiver.se
18
Tea app leak worsens with second database exposing user chats (www.bleepingcomputer.com)
submitted 1 week ago by rssbot@lemmy.bestiver.se to c/hackernews@lemmy.bestiver.se
4 comments fedilink hide all child comments
 

Comments

you are viewing a single comment's thread
view the rest of the comments
[–] ikidd@lemmy.world 4 points 1 week ago (1 children)

Well, the important thing is they're trying to prosecute someone for exposing their security failings.

[–] MurrayL@lemmy.world 1 points 1 week ago* (last edited 1 week ago) (1 children)

Identifying and responsibly disclosing security flaws is legal; publicly exploiting them is not.

The app is dumb and whoever developed it was beyond irresponsible, but the people involved in leaking the images & info they found aren’t innocent either.

[–] Rivalarrival@lemmy.today 2 points 1 week ago

Identifying and responsibly disclosing security flaws is legal; publicly exploiting them is not.

"Security Flaws" implies that there was some attempt to restrict access that could have been considered "security". They made no such attempt. Everything was openly provided to the general public.

Putting a big bowl of candy on your front porch during Halloween is an "invitation", not a "security flaw".