Settings

Theme

Delve sets the record straight on anonymous attacks

delve.co

19 points by frenchtoast8 3 months ago · 23 comments

Reader

not_your_vase 3 months ago

    > everything is untrue, that's why we have changed every aspect of our business in the past 96 hours
I gotta say I'm convinced
semyonsh 3 months ago

There is an old Dutch saying which goes: "Trust comes afoot and leaves on horseback". When you're in the compliance business you cannot fumble this ball, but you have.

  • redanddead 3 months ago

    I don't see a way to recover frankly

    Their existing customers are seriously exposed, i don't see this going anywhere except court

    The problem is the malicious intent, you just can't do that anywhere, esp not in a trust based business..

    • jazzpush2 3 months ago

      The CEO is a clear scammer. How anyone trusts another word out of her math is beyond belief.

nickvec 3 months ago

> we built on an Apache 2.0 open-source repository, which explicitly permits commercial use, and significantly rebuilt it for compliance use cases

This framing is misleading. Apache 2.0 permits commercial use, but it also requires you to retain copyright/attribution notices, include the license, and add prominent notices to modified files.

Also hard to square “the allegations are fabricated” with simultaneously offering free re-audits, halting audit automation, and rebuilding the entire auditor network.

  • jazzpush2 3 months ago

    Also: you'd expect a compliance company to understand basic software licensing, especially the most popular.

  • benmmurphy 3 months ago

    The problem with Apache 2 is it might not be completely clear how this works with a Saas product. Of course if you are distributing binaries or source to customers then you are going to run into issues with Apache Licensing. But if you are just running code on your servers then its not so straight forward. However, I guess its likely they were distributing javascript code so that could be a problem for them. Also, I guess regardless of the licensing issues not being honest with your customers when you are a compliance company is not going to be great for business.

nathanwh 3 months ago

I don’t understand the screenshot, the “attacker” sent that to customers? Or Delve created this screenshot as a dramatic reenactment? The post is not clear

vital_beach 3 months ago

their entire defense is "we are totally trustworthy! it's not our fault some 'bad client' opened and shared a spreadsheet we negligently used as a publicly accessible database of our fraud"

  • robocat 3 months ago

    I love the spin:

      Rebuilding our auditor network and removing firms that don’t meet our standards
    
    Not "finding new auditors to replace those that want nothing to do with us and our standards were shite"
politelemon 3 months ago

There are numerous contradictions in their messaging. They admit the data matches, but is being misconstrued, but they're going to rebuild their network and reaudit customers anyway. I can only assume they've received advice on this poorly thought out message delivery from the same place they received that awkward gesture and body language coaching. I'm sorry to say that the combination comes across as insincere.

mellosouls 3 months ago

Subject being discussed here:

https://news.ycombinator.com/item?id=47634690

theanonymousone 3 months ago

The founder is a Forbes 30u30 according to his X profile. As they say, you can't make these things up.

aaronrobinson 3 months ago

They look guilty in that picture

mememememememo 3 months ago

They sound like me when I was learning SOC2. Ooh now I think I sorta get it. Lucky for me I was a mere employee and had consultants helping me.

nickvec 3 months ago

Why is this post flagged? Is Delve brigading it?

jazzpush2 3 months ago

It's important to note that pathological liars don't stop lying. In fact, when they're caught lying red-handed, they usually double down and lie even more.

  • mememememememo 3 months ago

    I also assume these damage control type missives to be very misleading. Seen so many of these on HN over the years.

pinkmuffinere 3 months ago

At the bottom of the page, I see an ad claiming “don't let manual compliance slow you down.” That really seems tone deaf lol

Keyboard Shortcuts

j
Next item
k
Previous item
o / Enter
Open selected item
?
Show this help
Esc
Close modal / clear selection