DoorDash email spoofing vulnerability sparks messy disclosure dispute

News
Yanac

A vulnerability in DoorDash’s systems could allow anyone to send “official” DoorDash-themed emails right from company’s authorized servers, paving a near-perfect phishing channel. DoorDash has now patched the issue, but a contentious disclosure dispute has erupted, with both sides accusing each other of acting in bad faith. […]BleepingComputerRead More