← Back to context

Comment by fsflover

1 month ago

> and they haven't found any

Why are you so sure? Not everybody shares vulnerabilities with the world. Some people keep them for themselves or sell on the black market. I doubt OnePlus offer a reasonable payment for that.

5 comments

fsflover

Reply
JCattheATM  1 month ago

Because it's not a high target device. Valuable targets are not using outdated OnePlus devices. There might not be money to be made, but there is reputation to be earned by discovering a new vulnerability. I doubt a vulnerability in some old 6T hardware would be worth much, while disclosing it and padding a resume would be.

  • fsflover  1 month ago

    People who use non-mainstream systems and rely very little on proprietary software are automatically more interesting. They may have something to hide.

    • JCattheATM  1 month ago

      I think that's a massive case of confirmation bias and exaggeration. People that use GrapheneOS are significantly, substantially more of a target than someone using a librem out of principle.

      I don't think you have much of a point at all, but I also don't see this discussion going anywhere interesting so I'll leave it at that.

      2 replies →