Top Qs
Timeline
Chat
Perspective
WooYun
Defunct Chinese vulnerability disclosure platform From Wikipedia, the free encyclopedia
Remove ads
The WooYun (Chinese: 乌云网; lit. 'dark cloud')[2] was a Mainland China-based vulnerability disclosure platform[3] founded in May 2010[4] by Fang Xiaodun[5] and Meng De.[6] It posted an announcement on July 20, 2016, that the site was down for an upgrade and would be restored in the shortest possible time.[7] However, as of April 12, 2021, the website remains inaccessible.[8]
WooYun touted itself as a "free and equal platform for reporting vulnerabilities".[9] The Wooyun.org domain name was registered on May 6, 2010.[10]
Remove ads
Legal incidents
JD and Jia Wei
![[icon]](#/media/File:Wiki_letter_w_cropped.svg){kind=small} | This section is empty. You can help by adding to it. (July 2021) |
Jiayuan and Yuan Wei
A white hat by the name of Yuan Wei ("YW") submitted an SQL vulnerability to Jiayuan.com in December 2015. Jiayuan fixed the issue and publicly thanked YW, but reported him for alleged theft of more than 900 rows of personal information in January 2016. The suspect was taken into custody in April while maintaining his innocence, explaining the access as caused by the sqlmap program.[11]
Shutdown
On the evening of July 19, 2016, someone broke the news that all the senior managements of WooYun were taken away by the police.[12]
The Wall Street Journal said it was unclear whether the Chinese government shut it down or its organizers did.[13]
iThome.com.tw speculated that the most likely reason for the shutdown of WooYun was that hackers on the platform exposed a vulnerability in the system of China's United Front Work Department, which had leaked Chinese state secrets and stepped on the bottom line of the Chinese government.[14]
Remove ads
Notable disclosures
| This section is empty. You can help by adding to it. (July 2021) |
References
See also
Wikiwand - on
Seamless Wikipedia browsing. On steroids.
Remove ads