| |
| ▲ | 866-RON-0-FEZ an hour ago | parent | next [-] | | Many brilliant people have serious mental health issues that preclude their ability to regulate their emotions and act maturely in serious situations e.g. responsible vulnerability disclosure. I've watched genius-level IQ people get fired time and again because they don't know how to work with others at a basic kindergarten level. | | |
| ▲ | gusfoo 30 minutes ago | parent | next [-] | | There is, sadly, no place for non-standard ICs in corpos nowadays. HR will enforce that. | | |
| ▲ | david-gpu 23 minutes ago | parent [-] | | Emotionally immature people tend to be a liability, not an asset. Therapy can help, but they first need a willingness to do better. |
| |
| ▲ | BoorishBears 23 minutes ago | parent | prev [-] | | This is an oddly passive-aggressive comment when a much more likely read is they were relying on the funding and the large tech company did what large tech companies do and started moving slowly. And I can see others already blaming them for relying on the vulnerability for living expenses, but if we can hold the hyper-rationalization for a second, we shouldn't be against the person who expected an organization with more money than God to uphold a deal for relative peanuts, right? Like yes we all get that large orgs make spending $5 very hard, many claps for being the in-group, but their frustration would be understandable. | | |
| ▲ | 866-RON-0-FEZ 16 minutes ago | parent [-] | | I'm supposed to feel bad that Microsoft didn't immediately wire him an advance on the bounty before validating anything? Have you ever tried to get anything corrected with a corporate payroll department? Try three months minimum. It's like suggesting someone was relying on a lottery ticket to payout to survive. | | |
| ▲ | BoorishBears 4 minutes ago | parent [-] | | I tried to be as coddling with my language as possible. Acknowledged how orgs work, separated blaming the org from sympathizing with their reaction, tried to separate the prudence of their actions from the sticky situation they'd still be left in by the orgs actions... But it was for naught: people are really ingrained in a weird "might-makes-right" model of corporate operations. "Larry Ellison is a lawnmower" was supposed to be a jeremiad but now it's more like a guiding principle that we browbeat anyone for questioning. |
|
|
| |
| ▲ | allset_ 3 hours ago | parent | prev | next [-] | | Presumably, not paying out for these bugs which often take weeks of research to find. | | |
| ▲ | mr_mitm 3 hours ago | parent [-] | | Who in their right mind bets on bug bounties to cover their basic needs? They should be highly employable with these kind of skills. | | |
| ▲ | michaelt 2 hours ago | parent | next [-] | | > Who in their right mind bets on bug bounties to cover their basic needs? Someone with a vulnerability worth as much as a two bedroom apartment? | |
| ▲ | brudgers an hour ago | parent | prev | next [-] | | If you take the statement at face value, that does not appear to be the case. If you don’t take it at face value, the underlying presumptions might be a lot of why they may not be employable. | |
| ▲ | etchalon 2 hours ago | parent | prev | next [-] | | Someone who doesn't have better options? | | |
| ▲ | cortesoft 2 hours ago | parent [-] | | If you have those sorts of skills with a computer, you will have other options | | |
| ▲ | 0x3f 2 hours ago | parent | next [-] | | Really depends on your background doesn't it? You could have convictions, be sanctioned, have visa problems, or all kinds of things that are not easily solvable. | | |
| ▲ | qingcharles an hour ago | parent | next [-] | | Indeed, and this guy's personality seems a little "difficult" which might make the interview process short. I've known people with insane skills who have such weird personalities that they never get hired. Doing remote bug bounty stuff is a blessing for them. | |
| ▲ | squigz an hour ago | parent | prev [-] | | To say nothing of mental health issues. | | |
| |
| ▲ | mfro 2 hours ago | parent | prev | next [-] | | Please let me know when finding a job in software engineering in 2026 is feasible for everyone with ‘computer skills’. | | |
| ▲ | echoangle 2 hours ago | parent [-] | | The guy doesn’t just have „computer skills“ if he found this. | | |
| ▲ | formerly_proven an hour ago | parent [-] | | Good luck convincing a HR automaton not looking at your resume for the job unposting of that. | | |
| ▲ | echoangle 43 minutes ago | parent [-] | | Come on, with these skills you could convince someone to give you a job if you’re on the streets otherwise. You might not be a senior engineer in the exact thing you want but you won’t be on the streets. |
|
|
| |
| ▲ | 866-RON-0-FEZ 19 minutes ago | parent | prev | next [-] | | King Terry was living proof this is not true. | |
| ▲ | GolfPopper an hour ago | parent | prev | next [-] | | Good with computers and good with people/job search/finances are not the same thing, and are often inversely correlated. | |
| ▲ | MrDarcy an hour ago | parent | prev | next [-] | | Then you pay him since you see the value he’s creating so clearly. | | |
| ▲ | cortesoft 26 minutes ago | parent [-] | | This is a strange argument. I don't have the capital, desire, or skills to employee this guy, or anyone really. Me not hiring someone doesn't mean the skills aren't valuable. |
| |
| ▲ | estimator7292 2 hours ago | parent | prev [-] | | We are, quite notably, in a huge hiring crisis where vast numbers of programmers and researchers can't even get interviews. It really is not that simple |
|
| |
| ▲ | cowpig 3 hours ago | parent | prev [-] | | people with values different from yours, presumably | | |
| ▲ | dpark 2 hours ago | parent [-] | | This is one it those answers that seems on the surface like it contains insight but on closer inspection it’s vacuous. This could be rewritten as “because they aren’t you”, which is true but not a meaningful or educational answer. | | |
| ▲ | panflute 2 hours ago | parent | next [-] | | Sure sounds like rhetorical questions or attacking the messenger. Someone can think the bounty industry is going to reward them for actually being exceptional and not look soon enough for other options then pivot to a stance that should give them some quick job offers. If I thought I found an intentional back door I would not engage with an embargo system from the same vendor but I am also not them. | | |
| ▲ | dpark 2 hours ago | parent [-] | | > Someone can think the bounty industry is going to reward them for actually being exceptional and not look soon enough for other options then pivot to a stance that should give them some quick job offers Sure. And that’s a meaningful answer to the question. “people with values different from yours, presumably” is a condescending nonanswer. |
| |
| ▲ | breppp an hour ago | parent | prev [-] | | This entire thread is generally weird. If someone has this kind of exploit and can't get a bug bounty for it, and desperately needs the money, he can sell it for 100k+ in a shady black market |
|
|
|
| |
| ▲ | an hour ago | parent | prev [-] | | [deleted] |
|
