A developer's nightmare story for Halloween. The scary part is that this is true.
First some background: I am a software developer with 10 years of experience and have worked for end-clients that include some of the world’s biggest Technology brands.
Until recently, I was contracted with xxxxxx, a small company based in London that produce software for the Insurance sector.
Upon reviewing the source code of one of their products, I immediately sent one of the company directors an email detailing critical security failings, which I cannot list in detail. Ironically, this director claims to be a "Security Specialist", however, he had failed to ensure that the most basic of security safeguards had been observed.
The next day, one of the Web developers who had worked on the project in question returned from holiday. He immediately began being abusive and insulting which soon degenerated into verbal threats of violent retribution against me. I was prompted to immediately complain to the so-called "Security Specialist" Director that I considered this kind of behaviour to be intolerable (and illegal). My contract was terminated on the next working day.
I don't imagine the damages I would receive from court action would sufficiently compensate for the long-term damage suing a former employer would do to my career.
So, let this be a warning: your boss doesn't want to be told (a few days before release) that entire networks of their software could be turned into a zombie botnet by a newbie script kiddie.
First some background: I am a software developer with 10 years of experience and have worked for end-clients that include some of the world’s biggest Technology brands.
Until recently, I was contracted with xxxxxx, a small company based in London that produce software for the Insurance sector.
Upon reviewing the source code of one of their products, I immediately sent one of the company directors an email detailing critical security failings, which I cannot list in detail. Ironically, this director claims to be a "Security Specialist", however, he had failed to ensure that the most basic of security safeguards had been observed.
The next day, one of the Web developers who had worked on the project in question returned from holiday. He immediately began being abusive and insulting which soon degenerated into verbal threats of violent retribution against me. I was prompted to immediately complain to the so-called "Security Specialist" Director that I considered this kind of behaviour to be intolerable (and illegal). My contract was terminated on the next working day.
I don't imagine the damages I would receive from court action would sufficiently compensate for the long-term damage suing a former employer would do to my career.
So, let this be a warning: your boss doesn't want to be told (a few days before release) that entire networks of their software could be turned into a zombie botnet by a newbie script kiddie.
Comment