The FTC’s guidance emphasizes the importance of having a clear communication channel for reporting security vulnerabilities, yet many companies fail to implement this effectively.
Roomster's security measures were found lacking, as they buried their contact information deep within their privacy policy, making it difficult for users to report vulnerabilities.
The absence of a clear and accessible way to report security issues reflects a broader problem where companies do not prioritize effective responses to security alerts.
Attempts to warn Roomster about the exposure of personal information went unanswered, showcasing a significant gap in their security management and response protocols.
Collection
[
|
...
]