I discovered a security flaw in a widely used software that could be exploited by malicious actors; do I report it immediately to the company, or try to 'ethical hack' it to prove the danger publicly?

Umut Yalçın

Umut Yalçın

Report to company privately13 votes (24%)

Ethical hack publicly13 votes (24%)

Inform government agencies12 votes (22%)

Do nothing, observe16 votes (30%)

54 votes total • Created 2/1/2026

Want to vote on this poll? Sign in to asQkme

I discovered a security flaw in a widely used software that could be exploited by malicious actors; do I report it immediately to the company, or try to 'ethical hack' it to prove the danger publicly? | asQkme