Yahoo used to really know how to treat the vulnerability researchers who found bugs in its services.
They used to send them a voucher for a free Yahoo t-shirt. Sadly, those glory days are now over.
Sorry, in future you won’t be given a voucher for $12.50 to spend in the Yahoo Corporate Store if you find a critical vulnerability in a service used by hundreds of millions of internet users.
Such a risible bug bounty is unlikely to win Yahoo any friends and could – if anything – make it less likely that the site will gain the assistance of white-hats in future.
Thumbs up to Facebook, which has announced it is finally enabling HTTPS by default for its users.
We celebrate by giving away some T-shirts..
Facebook scams are getting sneakier – with the latest attack using the lure of a free T-shirt celebrating Facebook’s birthday in an attempt to steal the secret backdoor key to your account.