3. Why don't Software Vendors care about security?

Why don't Software Vendors care about security?

If those certificates aren't expired, you need to raise a security incident with that company, so they can revoke and re-issue the certs.

If you only raise it with the vendor, they likely won't do anything.

Do this in writing, do it unambiguously, and do it so that it's very clear that you're helping them and it won't be interpreted any other way. Occasionally someone misinterprets something and projects some kind of mistaken motive, and it's hard to get back on track after that.

I'd recommend talking to someone who's handled a disclosure of this sort before. It's pretty standard that if something isn't resolved within X time, the information is disclosed publicly.

/r/sysadmin Thread Parent
Previous
Next

Recently removed from /r/sysadmin

I know of a crazy vulnerable Exchange server at my old work. What to do? Details inside. Intune Windows LAPS - Configuration Profile Applies Successfully, Yet Nothing Happens...Why? Woman starting in IT next month. Should I be worried or not? How to run a meaningful CyberSecurity Risk Workshop/Assesment Amazon Outage I don't know what I'm doing and I need help What's the point of using BitLocker with TPM instead of password when someone can always access your computer without entering a password on boot? How many of you despise IoT? Onboarding 1200 New Users - how to communicate passwords? Gen Z also doesn't understand desktops. after decades of boomers going "Y NO WORK U MAKE IT GO" it's really, really sad to think the new generation might do the same thing to all of us Modern SQL Express Backup Solution [GA] Employee claims she can't use Microsoft Windows for "Religious Reasons" So I got a "correctional talk" yesterday. Rant about new age "senior" IT "specialists" who don't know how to wipe their butt. Do you think remote work is slowly dying? Most companies seem to be pushing RTO, even big tech you folks think ?

More Random Comments

Metonymy is a self-defense mechanism I feel alone because I basically hate the trans community Please HELP- my son is a Narcissist. How do I help him stop. Oculus VR is funding about two dozen Rift-exclusive games Tumblr user racist for hating the word "Extra" DONE: Schweinsteiger joins ManUtd from Bayern, according to Bild The Federal Government runs the Compassionate Investigational New Drug program; there are currently four surviving patients who receive 4 - 9 ounces of cannabis per month from the Federal Government through the University of Mississippi; the program does not accept new patients Test, please ignore Noise in the coax lines, old TV blamed as culprit, plausible? (xpost from /r/techsupport) An old team at reddit DONE: Schweinsteiger joins ManUtd from Bayern, according to Bild An old team at reddit What [SERIOUS] Work-At-Home jobs i can take nowadays? You always hear of girls...But guys of reddit who have experimented with a same sex friend. How'd it go? Did it become awkward? What is something rich people buy that poor people know nothing about?