Gecko Security (yc Company) Allegedly Steals Cve Reporting Credit
Posted3 months agoActive3 months ago
twitter.comTechstory
controversialnegative
Debate
20/100
Cve ReportingSecurity ResearchEthics
Key topics
Cve Reporting
Security Research
Ethics
Gecko Security, a YC-backed company, is accused of stealing CVE reporting credit, sparking controversy in the security research community.
Snapshot generated from the HN discussion
Discussion Activity
Light discussionFirst comment
13h
Peak period
1
13-14h
Avg / period
1
Key moments
- 01Story posted
Oct 13, 2025 at 7:11 PM EDT
3 months ago
Step 01 - 02First comment
Oct 14, 2025 at 8:31 AM EDT
13h after posting
Step 02 - 03Peak activity
1 comments in 13-14h
Hottest window of the conversation
Step 03 - 04Latest activity
Oct 14, 2025 at 8:31 AM EDT
3 months ago
Step 04
Generating AI Summary...
Analyzing up to 500 comments to identify key contributors and discussion patterns
ID: 45574313Type: storyLast synced: 11/17/2025, 10:05:48 AM
Want the full context?
Jump to the original sources
Read the primary article or dive into the live Hacker News thread when you're ready.
We work directly with maintainers via GitHub, not bounty platforms. Neither we nor the maintainers knew about your Huntr reports at the time, otherwise they would have been marked as duplicates.
We've publicly credited FuzzingLabs for the 2 CVEs where your findings came first, and we're always happy to credit whoever finds them before we do.
The claim about stolen CVEs doesn't hold up when many links you provided were already marked as "duplicate" or "invalid" on Huntr."
source: https://x.com/gecko_sec/status/1977805927320551672
This is become a flame-war.