Status
Not open for further replies.

Cch123

Level 7
Verified
Until the details come out, we cannot confirm that it is Bitdefender's fault for not encrypting passwords. Remember that the hacker said this himself:
The hacker also said that the data they had access to was unencrypted, “Yes they were unencrypted, I can prove it… they were using Amazon Elastic Web cloud which is notorious for SSL [a form of web encryption]problems.
It is implied from this that the flaw was in Amazon's infrastructure.
 

Sloth

Level 5
Until the details come out, we cannot confirm that it is Bitdefender's fault for not encrypting passwords. Remember that the hacker said this himself:

It is implied from this that the flaw was in Amazon's infrastructure.
Even if the hacker managed to break into Amazon's SSL, Bitdefender is at fault for not encrypting user passwords.

I can't imagine how such big security firms choose to store passwords as plain text. :eek:
 
Status
Not open for further replies.
Top