Infact I cannot reveal much info. The target was an E-Commerce Application, the issue pertains to corporate and the asset exploited was an unpurchased object.
Hope it's explanatory. I was only looking for the action to be implemented by the newbie. Cheers, 0xN41K On Wed, Nov 10, 2010 at 8:49 PM, Sandeep Thakur <[email protected]>wrote: > Can you please elaborate the scenario. > >> You may be knowing his/her jurisdiction? > >> What kind of asset it is? > >> Vulnerability if exploited contains/exposes any possible sensitive data > or related devices? > >> Is this issue pertaining to corporate or government or evenmore critical > departments concerning national security aspects? > > Generally speaking: > Under india, may not be a big issue on a general note. It should not be > any infrastructure from any corporate; this is always subject to investigate > and impose fines or appropriate termination procedures on violation of > established corporate policies.Otherwise, government bodies does not realise > about it untill someone knows / finds /leaks about this issue. > > Also assets usually if classiffied into returnable or non-returnable to the > corporate or government or any department, you shall recommend him/her to > return the asset by accepting the mistake if the asset be the returnable. > Else consult his supervisor for appropriate steps or procedures. > > > Regards > Sandeep Thakur > > > On Wed, Nov 10, 2010 at 6:03 PM, N41K <[email protected]> wrote: > >> Hi Geeks, >> >> Note: I need some inputs from all >> >> " A newbie out of curiosity exploited a vulnerability and got few >> physical materials delivered" >> >> Could you please share your views, what actually should be his >> immediate action for not falling into the tie of Law or so. >> >> Thanks & Regards, >> Srinivas Naik >> >> -- >> You received this message because you are subscribed to the Google Groups >> "nforceit" group. >> To post to this group, send an email to [email protected]. >> To unsubscribe from this group, send email to >> [email protected]<nforceit%[email protected]> >> . >> For more options, visit this group at >> http://groups.google.com/group/nforceit?hl=en-GB. >> >> > -- > You received this message because you are subscribed to the Google Groups > "nforceit" group. > To post to this group, send an email to [email protected]. > To unsubscribe from this group, send email to > [email protected]<nforceit%[email protected]> > . > For more options, visit this group at > http://groups.google.com/group/nforceit?hl=en-GB. > -- You received this message because you are subscribed to the Google Groups "nforceit" group. To post to this group, send an email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/nforceit?hl=en-GB.
