Ranter
Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
Comments
-
AlmondSauce16719284dWas your website based on a common platform like Wordpress, Drupal, etc.?
Used to be quite a common scam where script kiddies would email out common exploits to websites running known old / bad versions and then demand payment. Sounds very much like that. -
gagan-suie644284d@AlmondSauce no it was a MEAN stack web app. And the guy thought he could scare me by showing me my website in an iframe claiming my users can get tricked into clicking this fake website and stealing their credentials.
-
gagan-suie644284d@retoor she's the best. She actually took coding classes 30 years ago. We found her old assignments. She didn't even remember. Lmao
-
SidTheITGuy8955284dI usually respond with "If you're so good at finding vulnerabilities on my site, I would need to know how to put proper fixes in place to avoid these. Only then, you deserve the payment."
Seriously, for all they care they could just be throwing random words at you to get a payment. -
SidTheITGuy8955284d
-
NeatNerdPrime4204282d@gagan-suie actually this is eligible for court. This is a pen-test job without authorisation from the owner (you) and the communication can be interpreted as extortion. You should simply sue without notifying the opposing party .
Demand $1000 in damages. -
PepeTheFrog1232258dYou can tell him: "I don't have any money but what I can do is give you a free 60 minutes session on my hardcore furry porn OF with me thanking you for your contribution at the end of the day."
-
gagan-suie644258d@PepeTheFrog or my tiktok live doing the NPC trend. "thank you for the null pointer"
Related Rants
-
error50311This happened few hours ago. Client: I received an email which says that I won 1 million dollars. They gave m...
-
coolq36I know it wasn't ethical, but I had to do it. Semester 4 started this week, we all got to vote which day we w...
-
BlueWilson12Phoney call from MS: - We at Microsoft have detected an issue with your PC. - Oh, I only have a Mac. - But tha...
Someone once sent me an email talking about vulnerabilities in my website. He sent a full document with step by step instructions and code.
I emailed back and said woah! Thanks for the heads up I really appreciate it!
He responds back and says
"usually people send a payment as thank you"
I said sorry we're poor.
And he responds with "should I disclose the issue to your users?"
I said "we have like 6 users and most of them are my mom. Lol"
This was the email title:
Vulnerability Report 1 : Clickjacking On Login Lead to Account Takeover Of Any User/Cross Site Scripting Attacks/User Account Privilege Escalation/Victim Privilege Escalation/Malware Execution/Victim PC Hijack/Unauthorized Access To Any User Account/Account Takeover Of All The Users Registered On Your Application
rant
fake vulnerability
scam