Jens Spahns credit score is "very good"
Event start: 3 months, 2 weeks ago // Event Information
In the context of the CCC, we usually do our vulnerability disclosures responsibly. So we ensure that a vulnerability is closed or at least disclosed to the responsible entity for a certain amount of time before discussing it publicly. The practice of responsible disclosure is more than two decades old and has become the gold standard in handling vulnerabilities as a security researcher.
On the other hand, responsible disclosure often also minimizes a vulnerability's impact in public debates and, therefore, is an excellent way to keep everybody safe. Still, it also reduces the usefulness of security research as a method of direct action.
In this talk, I would like to explain based on two examples (the ID-Wallet as well as the Bonify case) in which cases I think the impact of a vulnerability can be maximized by shitposting it on Twitter while keeping everyone - except Jens Spahn and Helge Braun - safe.
// // 2:00:00
// // 0:16:30
open meetup for martial artists and entities interested in martial arts. we'll meet at the Marketplace, near the eve...
// // 1:00:00
Ein offenes Treffen für alle, die an Awarenessarbeit interessiert sind. Am Anfang stellen wir als c3Awareness uns und u...
// // 2:00:00
// // 0:45:00
Vor mehr als zehn Jahren lang ein Staatstrojaner auf dem Seziertisch des CCC. Was die Analyse zeigte, waren neben eklata...