Basically I found a vulnerability by complete accident that gave me access to people's PII in an IRS authorized e-file app. I disclosed the vulnerability to them, and they ignored me. I've made multiple attempts over the last several months.

Source: [Hacker News](https://news.ycombinator.com/item?id=48731016)

Sponsored