• ArbitraryValue@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    2
    ·
    23 hours ago

    Edit edit: it’s all in the article, darnit. Sorry.

    It is? I must have missed it but I can’t find any discussion of motivation even on a second read-through.

    • Nightwatch Admin@feddit.nl
      link
      fedilink
      English
      arrow-up
      1
      ·
      edit-2
      18 hours ago

      I meant it’s all about security vulnerability submissions, and although not explicit in the article, those submissions are therefore very likely

      • meant to up the reputation for xz-like attacks
      • meant to annoy/bully the devs
      • denial of service by delaying triage and therefore delaying creating patches
      • submitted by boatloads in the hope of cashing in on bug bounties