cross-posted from: https://lemmy.zip/post/20208162
The AI assistant company is blaming everything but its own security practices for a June security breach.
“It’s not a security vulnerability with our code, it’s a security vulnerability with our company.”
We didn’t do it and are not responsible!
Well an employee did it, but we’re still not responsible!
How could we be responsible for something someone who works for us did?
To take a quote from discord:“Rabbit penetration test always sounds like something completely different.”
Yeah no, a company that cares about security doesn’t have tokens in source code, as well known no-no. And those tokens also ideally aren’t fully privileged but scoped so that if it leaks the damage is minimized.
What a joke of a company/product
Hah, huge surprise that this was their reaction. Garbage product made by a garbage company run by garbage people.
Crap product by a crap company lead by a known fraudster. Who could’ve seen this coming??