"Hacker says hijacking libraries, stealing AWS keys was Ethical Research"
Follow
I heard that the US Congress just changed the laws so that if someone who is doing security research ("white hat") penetrates a system’s security, then they won’t get charged for a crime.
Most of the bad guys who attempt to attack my systems, flag their packets as “white hat”, so I don’t know how that new law is going to work. I think they need some kind of way to register white hats and also have a way for admins to give permission, like with robot.txt.
