Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
gmansoor
on March 27, 2014
|
parent
|
context
|
favorite
| on:
Security Hole in Sendgrid
BCC every message is evil, as it can be misused as in this case. SendGrid should never allow that, or at least should flag such behavior. At the minimum, they should notified account owners of this change.
icebraining
on March 27, 2014
[–]
The attacker got SG to change the email on file, so the notification would just be sent to him.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
