Symantec's 'Submit-A-Deal' Flawed

from the oops dept

Normally, I don’t bother posting stories about flawed security on websites. We all know that they’re there, and one more case doesn’t really prove much of a point. However, this latest example, by Wired News’ Brian Mcwilliams (who seems to be the Wired News reporter-in-charge-of-hacking) is interesting in a few ways. The story is about how Symantec’s website had an option to let companies offer up business proposals (often suggesting that they be acquired). It turns out that this “submit a deal” system wasn’t even the slightest bit secured. It was just wide open, so that anyone could see all the various deals that people were submitting to Symantec. As I said, news that a database that should have been absolutely private was available, is not news. However, when it happens to a company that claims to create security software, it makes you wonder. The second interesting tidbit is that this flaw exposed the fact that the Vmyths site was trying to sell itself to Symantec. This would be unfortunate, because Vmyths has made its name by pointing out the conflicts of interest all the anti-virus and security companies (including Symantec) have in announcing new virus finds. Vmyths tries to tone down the virus hype by pointing out that these companies make more money by scaring you into buying their products. For years, Vmyths has always said they wouldn’t take any advertising dollars from these companies, to preserve its independence. Now, they’re trying to sell out to one of them? It makes you wonder how honest they’ve been about Symantec claims.

Rate this comment as insightful
Rate this comment as funny
You have rated this comment as insightful
You have rated this comment as funny
Flag this comment as abusive/trolling/spam
You have flagged this comment
The first word has already been claimed
The last word has already been claimed
Insightful Lightbulb icon Funny Laughing icon Abusive/trolling/spam Flag icon Insightful badge Lightbulb icon Funny badge Laughing icon Comments icon

Comments on “Symantec's 'Submit-A-Deal' Flawed”

Subscribe: RSS Leave a comment
1 Comment

Add Your Comment

Your email address will not be published. Required fields are marked *

Have a Techdirt Account? Sign in now. Want one? Register here

Comment Options:

Make this the or (get credits or sign in to see balance) what's this?

What's this?

Techdirt community members with Techdirt Credits can spotlight a comment as either the "First Word" or "Last Word" on a particular comment thread. Credits can be purchased at the Techdirt Insider Shop »

Follow Techdirt

Techdirt Daily Newsletter

Techdirt Deals
Techdirt Insider Discord
The latest chatter on the Techdirt Insider Discord channel...