Consider what the finder could have sold the exploit for, and the damage it coul... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		hobs on Dec 3, 2014 \| parent \| context \| favorite \| on: Hacking PayPal Accounts with one click Consider what the finder could have sold the exploit for, and the damage it could have caused. I think given that you could effectively steal from any account for which you knew the email was worth significantly more than 10k.

Mahn on Dec 3, 2014 [–]

> you could effectively steal from any account for which you knew the email

If you succeed in CSRF attack him, that is.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact