Friendica
Simon Jaeger
Simon Jaeger

Simon Jaeger

simon@procrastodon.net

Simon Jaeger

simon@procrastodon.net

thirty-something/male/Canada. I'm likely to post about tech, books, accessibility, blindness, and general life updates.
I work in accessibility, read a lot, collect weird tech, and selfhost things (including this instance).

I accept others as long as they accept others.
Feel free to say hi.

ActivityPub
2025-10-26 03:18:59 2025-10-26 03:17:29 2025-10-25 23:52:09 9023808

Simon Jaeger
Simon Jaeger
mastodon - Link to source

Simon Jaeger

3 days ago • •

Simon Jaeger

3 days ago • •

So, hypothetically, if I found out that a vulnerability in a voicemail system which allowed anyone to access anyone else's voicemails without warning or authentication hadn't been fixed over the past 11 years, and the company had been adequately warned about it multiple times, who would I talk to?
#security #voip
#security #voip
  •  Languages
  •  Search Text
  •  Share via ...
in reply to Simon Jaeger

Mikołaj Hołysz
mastodon - Link to source

Mikołaj Hołysz

in reply to Simon Jaeger • 3 days ago • •
The public. Send them a last, courtesy email, inform them that a blog post with your findings will be published 90 days from now as per standard cybersecurity industry practice, and then follow through if they don't fix it (and even if they do).
  •  Languages
  •  Search Text
  •  Share via ...
in reply to Mikołaj Hołysz

Mikołaj Hołysz
mastodon - Link to source

Mikołaj Hołysz

in reply to Mikołaj Hołysz • 3 days ago • •
If this is a telco (which it presumably is), you may have luck with your local regulation, but you'd need to talk to canadian cybersec / telecom experts about it specifically, and I doubt any will randomly pop up here without seeking them specifically.
  •  Languages
  •  Search Text
  •  Share via ...
⇧