Baidu was notified of these vulnerabilities prior to Citizen Lab’s publication, and has apparently patched some of the issues Citizen Lab identified.
They notified a software manufacturer of a security weakness? Isn’t that a felony?
Oh, I see. They’re Chinese. So it’s an act of war instead.
