| ▲ | dgellow 4 days ago | |
It’s a case study. Why wouldn’t they present work they’ve done for a customer? | ||
| ▲ | athrowaway3z 3 days ago | parent [-] | |
Oh i maybe was a bit too short worded. I meant specifically that they framed this as if they discovered a previously unknown class of bug and are now sharing it with the world to help save us. I liked that they shared it - but the tone was all wrong. It wasn't an unknown type of attack and the fact that (they're presenting it as if) neither the bank nor they knew about it before hand makes both look bad. There's not really a great way to write that blog post and make everybody happy, but if you had to i'd just not have named the bank and offer it as a case study of why this class of attacks needs attention. | ||