Yifan‼️H&R Block Business 2025 Backdoor‼️
I found a TLS backdoor in H&R Block software. They install a wildcard root CA (expiry 2049) into your trusted root certificate store and include the private key in the application DLL.
YouTube
Suriele@yifanlu Uhm ? For real .. ?
For all that moral superiority there was no attempt from you to coordinate with them either.
You just took their response at face value and immediately made a video about it.
No warning them you would publicly disclose if they don't confirm they will fix it, nothing .....
Yeah this ain't it. Be better.
All you did was put people at risk of this being used by malicious actors on them with no available patch.