A security researcher has launched a GoFundMe campaign to raise funds for his legal procedures, to fight against a company that’s suing him for making a responsible disclosure. He has found two open repositories exposing sensitive data of a company, and disclosed them to the concerned company for closing it. While they did do, they also sent a legal notice accusing him of the act.
Suing For a Responsible Disclosure
Rob Dyke, a security researcher, and a platform engineer has found a vulnerability in two open repositories of a company on March 8th and disclosed it to the concerned company. The exposed repositories include API keys, application code, usernames, passwords, and URLs of third-party, and embedded items.
Public repository. Online for TWO YEARS. API keys. Usernames. Passwords. URLs of third party embedded items. — Rob Dyke (@robdykedotcom) March 9, 2021
