Ask HN: Proper procedure/etiquette for reporting a security bug to a fintech | Dark Hacker News