Guest User

Untitled

a guest
May 1st, 2016
331
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. ---------- Forwarded message ----------
  2. From: Girish Mathrubootham <girish.mathrubootham@freshdesk.com>
  3. Date: Mon, May 2, 2016 at 12:02 AM
  4. Subject: Your post on the Freshdesk forum
  5. To: seri0uslysecur1ty@gmail.com
  6. Cc: Kiran Darisi <kiran@freshdesk.com>
  7.  
  8.  
  9. Hello,
  10.  
  11. I am Girish, the CEO of Freshdesk.
  12.  
  13. First, I want to apologize for the miscommunication from our company and for keeping you in the dark.
  14.  
  15. We deployed the security fix as soon as we recognized the vulnerability. We couldn't stop support for old SSO mechanism on Thursday because many of our customers had not made the switch. And all their systems would have broken if we had stopped the old method then.
  16.  
  17. Please give us time till Tuesday when we can be sure that all our customer accounts are safe. On Tuesday, after we shut off our old SSO mechanism, we will answer your questions publicly on the same forum thread. I urge you to keep this information to yourself until then.
  18.  
  19. I have CC'ed Kiran, our DevOps Director so he can personally make sure that this happens.
  20.  
  21. Sincerely,
  22. Girish
RAW Paste Data