Reply to post: What is the penalty?

What a crane in the ass: Bug leaves construction machinery vulnerable to evil command injection

Rajesh Kanungo

What is the penalty?

I have been in security for 20 years and I have come to the following realization:

People will not fix security issues unless there is a penalty (market share drop, people die, lawsuits, recalls, etc.). No one follows SDLC unless there is visible harm or a profit. Even GDPR is not a concern here.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon