ICEBlock handled my vulnerability report in the worst possible way
2 days ago
- #vulnerability
- #security
- #activism
- The author criticized ICEBlock's security and handling of vulnerability reports.
- Joshua Aaron, the developer of ICEBlock, ignored warnings about running an outdated and vulnerable version of Apache.
- The author provided detailed vulnerability information and a deadline for fixing the issue, but Joshua blocked them instead.
- Despite multiple warnings, Joshua's server remains unpatched, raising concerns about potential data breaches.
- The author emphasizes the importance of security, especially for an app downloaded over a million times.