Oddbean new post about | logout
:rss: Hacker News | 4 months ago (raw) | export | reply | flag 
 Booking.com ignores twofactor, lets everyone email-login without a password
https://news.ycombinator.com/item?id=40720674
#ycombinator
Heliodex /🅮/acc | 4 months ago (raw) | root | parent | reply | flag 
 Is this the same Booking.com that just allocates a bug budget of millions yearly and pays out for mistakes because it's cheaper than abandoning their move-fast-and-break-things style?