HackerOne takes $25,000 from Belarusian hacker in response to sanctions
twitter.comIt makes me sad that we have de-humanized everyday Russian and now Bellorussian citizens for the crimes of their totalitarian governments.
I could see an argument if these were functioning democracies but they are not. Imagine if everyday Americans had to face punitive sanctions or like in this case outright theft because their democratically elected governments chose to invade a country (like Iraq) on false pretenses and proceed to kill hundreds of thousands of innocent civilians (again, speaking of Iraq)
What Russia is doing in Ukraine is unconscionable, but in a totalitarian government, individual citizens have infinitely less agency than they do in the west. Even in the US, remember how little agency everyday Americans had to fight the governments decision to invade Iraq and Afghanistan after 9/11.
This ethical hacker did nothing wrong. The funds should have been frozen, not stolen without due process. It’s almost like HackerOne is begging for retribution. Let’s hope they don’t reap what they sow.
Cyberwar sounds pretty scary right now.
Seriously, they could have frozen the assets and waited. Instead they decided to rob the individual like the US robbed the Afghanistan central bank.
They have proven that they can't be trusted and you are better of selling your exploit on the dark web for crypto.
Very unfortunate for HackerOne to take away the reward of a hacker because they are from Belarus, even though they disagree with their government and are under sanctions.
The whole point of HackerOne is to reward and incentivise hackers for finding vulnerabilities to make software services safer. In this case, the incentive is gone.
But it is yet another example of a private platform doing private platform things and now it sets another precedent of what they can do if you cross the line, with or without sanctions.
They might as well go elsewhere or even the dark web.
ah, hey! i made the exact same comment. here's to hoping our future doesn't become a corporate cyber-dystopia :)
Yeah I don't think this is right. Not being able to do bank transfers temporarily doesn't mean you can seize the contents of accounts.
> We are powerless. I'm sorry. 8/9
This is such a frustrating outlook. Your are powerless because you believe you are powerless. You believe you are powerless because your government recognized your power long ago and actively works to subvert it.
The police telling you to break into smaller groups is why you are powerless. Your cooperation with tyranny is all that makes you powerless.
We aren't even in your country and we know we are going to stop your government. We want to, and we will.
It's too bad we want it more than you, and sad that other people have to pay with their lives because you want to live on your knees.
I find it hard to take this viewpoint seriously. It's essentially saying, "to have valid cause, you need to literally overthrow your government." To put that in perspective, think of how much effort it takes to change education policy in the US, or healthcare policy. Even in a "democratic" system, you have little say in what your government does. Do you really think you can change how schools are run, or how healthcare is charged? Coordination is next to impossible without a robust public forum (which, reading the hacker's comments, is next to impossible in Belarus). It is unjustifiable to hold an arbitrary individual accountable for systemic failures.
You say "we" as if... you speak for HackerOne? If this is their true perspective, it is a tragedy. Allowing companies to do this basically sets a precedent for companies to arbitrarily say, "Hah, we don't like you, so we're not going to payout". In the future, you'll see people get "cancelled" because they said something bad, or because the CEO doesn't like their environmental views, or what have you. The individual is at the mercy of the big corp (hey, isn't that what you're against, in Belarus-government format?)
I suggest HackerOne (and this comment) to immediately rectify this by making all efforts to allow the individual to receive the funds (if&when it is legal to do so)
This move is probably counterproductive. You want to incentivize people to end the sanctions by promising them they can get their money when it's over. If the money is gone, there is no point anymore.
> you want to live on your knees
When you have to choose between personal physical health and slight possibility of improving your government, the choice is obvious. I doubt you would make a different choice if you were put in Russia.
And don't tell me there is power in numbers and millions of Russians can change anything. If there are millions of Russians that oppose this war (I'm not sure about it) it's hard to organize them. The people who were good at organizing protests were hunted.
EDIT: and I hate this patronizing western rhetoric "protesting the government is easy, I'll teach you how"
Update just added to the thread https://mobile.twitter.com/martenmickos/status/1503081449188...