Originally Posted by PoopaScoopa
If their intent was to be malicious, they never would of notified the vendor of the vulnerability and certainly wouldn't of made it public. They'd be actively exploiting it for profit among themselves. I realize this is too difficult for you understand but this is how the industry works. Most companies don't invest enough money into developing applications designed around security. It's easier to push the product out now and hope no one finds any vulnerabilities. Companies regularly pay compensation for disclosing this information to them. Google pays good money to security researchers who find exploits in their code.
Yes, it is difficult for me to understand why you hold illogical opinions as facts, PoopaScoopa. You really have no idea what you are talking about. The "real" security "experts" are under contracts and are often hired for their work. Antisec finds them, and just exploits them. These "experts" that Google and other companies hire are paid to find the holes to prevent people like Antisec from using them. If you ever have the experience of having your identity stolen, just don't worry about it. The thief behind it will simply report the data back to your bank and other places you are apart of. As a reward, he can keep all the money he stole and you can live with the damaged name.
OH LAWD, BUT Y U COMPARE EXPERT SECURITY RESEARCHERS TO IDENTITY THIEVES?
YOU WILL NEVER UNDERSTAND!!
You will never understand.
BUT BUT BUT OTHER COMPANIES PAYZ TEH GOOD MONEY FOR THIS KIND OF STUFF
No, they don't. Not from people like antisec. You don't see security firms relying on black-hats do you? No, they hire white-hats to prevent the black-hats from ruining them.