Jens Spahns credit score is "very good"
Event start: 9 months ago // Event Information
In the context of the CCC, we usually do our vulnerability disclosures responsibly. So we ensure that a vulnerability is closed or at least disclosed to the responsible entity for a certain amount of time before discussing it publicly. The practice of responsible disclosure is more than two decades old and has become the gold standard in handling vulnerabilities as a security researcher.
On the other hand, responsible disclosure often also minimizes a vulnerability's impact in public debates and, therefore, is an excellent way to keep everybody safe. Still, it also reduces the usefulness of security research as a method of direct action.
In this talk, I would like to explain based on two examples (the ID-Wallet as well as the Bonify case) in which cases I think the impact of a vulnerability can be maximized by shitposting it on Twitter while keeping everyone - except Jens Spahn and Helge Braun - safe.
recommendations
-
Auf in eine lebenswerte (digitale) Welt! // // 1:30:00
Manchmal landen wir beim Nachdenken über die Zukunft in einer dystopischen Schleife aus Angst davor, was alles schief ge...
-
Introduction to Anarchism / Grundlagen des Anarchismus // // 1:30:00
-
Häkeln für Anfänger*innen – Projekt Tamponmonster // // 1:30:00
Wir häkeln kleine Tamponmonster. Dabei werden euch einige Grundlagen des Häkelns beigebracht. Ihr lernt wie Luftmaschen ...
-
Big sounds with micro processors - soldering and programming ATtiny synths. // // 1:30:00
The ATtiny is the little brother of the ATmega, which has gained a lot of popularity in the maker scene in the form of t...
-
Non Viol3nt Communication Workshop // // 3:00:00
Your code might be working, but what about your conversations? Perfect your ‘human protocol’ with our NVC workshop. In m...