Moral of this story: reward employees for reporting cyber weaknesses. Don’t fire them. An ethical hacker says he got into McDonald’s internal marketing system by swapping just one word in the website address—from “login” to “register.” Once inside, he found flaws that could have let attackers steal employee information, send fake company messages, or even post content on official McDonald’s sites. The hacker says the biggest challenge wasn’t finding the weaknesses but convincing the company to listen to his warnings after firing a worker who tried to help.

Via BankInfoSecurity