LinkedIn’s bug bounty program falls short to safeguard 500 million users
LinkedIn, according to the latest reports, has reported a critical security issue that could allow hackers to spread dangerous malware using its Messenger service.
Although LinkedIn hosts a bug bounty program wherein security researchers can report bugs directly to security@linkedin.com, this bug remained undisclosed until professionals at Checkpoint Technologies found it.
Commenting on this, Ankush Johar, Director of BugsBounty.com, said, “Checkpoint reported the bug on 14 June, 2017, but the messenger service has been running with CV functionality since 2015. It is highly possible that malicious hackers in the underground community already knew about this flaw and could have been using it to spread ransomware and other malicious programs.”Read More
Comments
Post a Comment