If you don’t respond and respond appropriately quickly when people attempt responsible disclosure, don’t be surprised when your security problem is aired publicly on Twitter.
Security researcher Devin Stokes has disclosed a vulnerability in Eskom’s information systems that is leaking customer data.
Stokes said that he took the decision to go public after Eskom failed to respond to several disclosure emails, emails from news organisations, and direct messages on Twitter.
He said that the leak has been going on for weeks.
“You need to remove this data from the public view! You are unnecessarily exposing your customers data!” said Stokes.
Read more on MELZIDEK.