IT consultant in Germany fined for exposing shoddy security::Spotting a plaintext password and using it in research without authorization deemed a crime
IT consultant in Germany fined for exposing shoddy security::Spotting a plaintext password and using it in research without authorization deemed a crime
The people that write laws and the systems that enforce laws are inept to an unbeliavable degree when dealing with anything cyber related so I have less than zero expectations that this gets reversed and actually expect a worse outcome should there be an appeal.
Because somehow only the most incompetent morons appear to be able to make it to judge or law maker.
The problem is that any judge can judge any domain they have zero knowledge about. They’re just expected to understand complex systems because they’re educated, and only required to know law (often not even that). The way it should be is that judges making decisions about complex domains should require a level of understanding or specialisation in that domain — judges judging cybersecurity should also have a background in some sort of computer science or engineering discipline.
Otherwise we’re just allowing “the internet is a series of tubes” people to dictate human progress.