this post was submitted on 19 Feb 2024
1 points (100.0% liked)

Cybersecurity

129 readers
11 users here now

founded 2 years ago
MODERATORS
[email protected]
1
Thought experiment on legitimizing hacking (lemmy.world)
submitted 1 year ago by [email protected] to c/[email protected]
3 comments fedilink hide all child comments
 

It is common for companies to neglect financing in cyber security for a quick short term gain. And at the same time the laws are created such that an offensive hacker would be the criminal. By turning the law around the blame would be on the company for building insecure systems, just like it is right now companies get problems if they would create unsafe products for consumers.

What do you think would happen if laws would change in such a way, that gaining unauthorized access would become legal? Note that I've intentionally excluded permission to share sensitive information. Would love to read your responses and thoughts

top 3 comments
sorted by: hot top controversial new old
[–] [email protected] 0 points 1 year ago (1 children)

Legitimised hacking exists. Bug Bounty programs exist like Bugcrowd, HackerOne, Open Bug Bounty, and Hack The Box just to name a few.

Then there are all the pwn2own contests too.

[–] [email protected] 0 points 1 year ago (1 children)

I think you misunderstood. Obviously bug bounty programs exists, and some companies participate in them. The idea was on a legislative level where this would apply for all companies.

[–] [email protected] 1 points 3 weeks ago

While capitalism is on shaky ground, if it survives the argument against this is it allows auditing of code and product quality by third-parties, instead of providing cover for corruption. Illegally breaking in is legal if you touch nothing and report it... At least, in most countries.

Sadly, I doubt the US official government's remains care about anything but having as many scapegoats as possible.