• catnip@lemmy.zip
    link
    fedilink
    English
    arrow-up
    64
    ·
    6 months ago

    Why? They’re absolutely right. The article doesn’t say anything about a root exploit or phishing either so were left wondering…

    • Tyfud@lemmy.world
      link
      fedilink
      English
      arrow-up
      11
      ·
      6 months ago

      He’s being condescending because he believes as a developer nothing is actually fully secure. If I spend 100 hours building and securing something, that’s not going to stack up very favorably vs the 1,000’s or even 1,000,000’s of hours attackers and communities can spend trying to break my security layers.

      Basically, he’s a dick in how he answered the question, but the truth every software engineer learns, is that there is no fully secure system. There’s always an angle/attack vector you didn’t think of and secure.

      • Miaou@jlai.lu
        link
        fedilink
        English
        arrow-up
        2
        ·
        6 months ago

        Of course there are (or there can be) fully secure systems. The problems come when you assume something is.

    • dev_null@lemmy.ml
      link
      fedilink
      English
      arrow-up
      2
      ·
      6 months ago

      They actual report does say it just displays a fake login page. It’s just phishing.