A security researcher was arrested in Florida for publicly disclosing a SQL injection (SQLi) vulnerability in an election web server. Should we be up in arms that they’re demonizing someone helping organizations patch flaws, or upset that the “hacker” is poking his nose where he shouldn’t? Normally, I side immediately with researchers, but this case is a little gray. Watch today’s video to learn why.
(Episode Runtime: 3:51)
Direct YouTube Link: https://www.youtube.com/watch?v=ekX6BYNdGw4
- Video disclosure of the Lee County server vulnerability – YouTube
- Article about the researcher’s arrest – ZDNet