It should never have gotten to the external feedback stage because internal feedback should have been sufficient to kill the idea before it even got a name due to it being such a security and privacy risk. The fact that it didn’t is worrying from a management perspective.
Pretty straightforward systemic failure – Dev team, I would guess, assumed full disk encryption would cover it, and nobody checked the assumptions. Or to rephrase: it was fucking obviously encrypted dude.
You’re right, nobody should ever rely on external feedback for anything. 🙄
It should never have gotten to the external feedback stage because internal feedback should have been sufficient to kill the idea before it even got a name due to it being such a security and privacy risk. The fact that it didn’t is worrying from a management perspective.
Not storing this shit unencrypted was pretty fucking obvious dude.
Pretty straightforward systemic failure – Dev team, I would guess, assumed full disk encryption would cover it, and nobody checked the assumptions. Or to rephrase: it was fucking obviously encrypted dude.
Derp a derp