Keeper Company, develops password management software, and we had mentioned in a previous post of ours, not so flattering, since its software was found to have vulnerabilities that allow it theft of application user credentials.
So the Chicago-based company, after the explosion of publications that blame its product, allegedly filed a lawsuit against the reporter who revealed the vulnerability.
Ars Technica security editor Dan Goodin is named as a defendant in the lawsuit filed Tuesday by Keeper Security.
He is accused of "false and misleading statements" about the company's password manager.
Goodin's story, released Dec. 15, said Google security chief Tavis Ormandy revealed a vulnerability that allowed "any website to steal any password."
Goodin was one of the first to publish the news with vulnerability.
Keeper claims in the lawsuit that Goodin and his employer, the website Ars Technica, which is also accused, "made false and misleading statements about the Keeper software application, claiming that it had a 16-month bug that allowed sites to steal user passwords. ”
The security company filed a lawsuit for defamation and also required the revocation and deletion of the article as well as a compensation.
Of course several security experts and Twitter researchers have condemned the lawsuit.
"It's bullying and Goodin is [definitely] in the top 1 percent [of] experienced journalists," said Matthieu Suiche, founder of Comae Technologies, a security firm based in Dubai, in a tweet.
"If Keeper Security believes this will make their software more secure, it will irreparably damage their reputation as a security company," he added.
Kim Zetter, a freelance security journalist, tweeted that the lawsuit was "ridiculous".
"It's a bad precedent for a security company and an dishonest way to treat a journalist who has been covering security incidents for years," he added.
Mention that we are very skeptical about whether the outcome of the decision will be in favor of Keeper…
