Skip to content

Davey Winder

delivering award-winning technology journalism since 1991

  • home
  • about me
  • follow me on mastodon
  • privacy policy
  • Toggle search form
Photo of a black top hat and a red rose

BKK: A lesson in creating black hat hackers

Posted on July 26, 2017July 26, 2017 By Davey Winder

A recent incident highlights just how the security industry could well be pushing legitimate researchers into being black hat hackers.

The security industry is always telling us that there is a shortage of people being recruited into the sector. What’s more, it admits it is fighting a battle with the ‘dark side’ when many talented researchers end up joining criminal endeavours that can offer the lure of making more money, and making it fast. While money, and excitement, are usually considered the main drivers creating black hat hackers, I’d like to put forward another: the way that people trying to help are often still treated by the companies whose security shortcomings they uncover.

Take the case of an 18 year old, who wishes to remain anonymous, and his discovery and responsible disclosure of a pretty simple yet severe vulnerability. The guy was looking at the website of the Budapest transport authority, Budapesti Közlekedési Központ (BKK), which allows you to buy tickets for travel online.

Click here to read complete article

Analysis Tags:BKK, disclosure, Hacking

Post navigation

Previous Post: 13 Ways To Secure Your Android Smartphone
Next Post: Swedish cloud data bork bork borked

Related Articles

Forget Passwords, This New Tech Is Nearly Hacker-Proof, 1Password Says Analysis
Gmail Hackers Leave Vital Clues Behind—Check These 3 Things Now Analysis
No, 1Password Has Not Just Been Hacked—Your Passwords Are Safe Analysis
New Critical Security Warning For iPhone, iPad, Watch, Mac—Attacks Underway Analysis
New Emergency Chrome Security Update After Critical iOS 16.6.1 Release Analysis
New iPhone iOS 16 Bluetooth Hack Attack—How To Stop It Analysis

Categories

Post Archive

Tags

0day Analysis Android Apple Apps breach bug bounty Business Chrome crime Cybercrime Data Protection Encryption Enterprise Google Government Hackers Hacking Health healthcare industry iOS IoT iPhone Malware Microsoft News NHS Opinion passwords Phishing Privacy ransomware Research Russia Samsung threat intelligence Twitter Update Vulnerabilites vulnerabilities Vulnerability Windows Windows 10 zero-day

Copyright © 2025 Davey Winder .

×
Cookies
We serve cookies. If you think that's ok, just click "Accept all". You can also choose what kind of cookies you want by clicking "Settings". Read our cookie policy
Settings Refuse all Accept all
Cookies
Choose what kind of cookies to accept. Your choice will be saved for one year. Read our cookie policy
  • Necessary
    These cookies are not optional. They are needed for the website to function.
  • Statistics
    In order for us to improve the website's functionality and structure, based on how the website is used.
  • Experience
    In order for our website to perform as well as possible during your visit. If you refuse these cookies, some functionality will disappear from the website.
  • Marketing
    By sharing your interests and behavior as you visit our site, you increase the chance of seeing personalized content and offers.
Save Refuse all Accept all
GDPR Cookie Policy