Delve sets the record straight on anonymous attacks(delve.co)
15 pointsby frenchtoast85 hours ago14 comments
  • not_your_vase4 hours ago

        > everything is untrue, that's why we have changed every aspect of our business in the past 96 hours
    I gotta say I'm convinced
  • semyonsh3 hours ago
    There is an old Dutch saying which goes: "Trust comes afoot and leaves on horseback". When you're in the compliance business you cannot fumble this ball, but you have.
    • redanddead3 hours ago
      I don't see a way to recover frankly

      Their existing customers are seriously exposed, i don't see this going anywhere except court

      The problem is the malicious intent, you just can't do that anywhere, esp not in a trust based business..

      • jazzpush22 hours ago
        The CEO is a clear scammer. How anyone trusts another word out of her math is beyond belief.
  • nickvec3 hours ago
    > we built on an Apache 2.0 open-source repository, which explicitly permits commercial use, and significantly rebuilt it for compliance use cases

    This framing is misleading. Apache 2.0 permits commercial use, but it also requires you to retain copyright/attribution notices, include the license, and add prominent notices to modified files.

    Also hard to square “the allegations are fabricated” with simultaneously offering free re-audits, halting audit automation, and rebuilding the entire auditor network.

    • jazzpush22 hours ago
      Also: you'd expect a compliance company to understand basic software licensing, especially the most popular.
  • 2 hours ago
    undefined
  • politelemon2 hours ago
    There are numerous contradictions in their messaging. They admit the data matches, but is being misconstrued, but they're going to rebuild their network and reaudit customers anyway. I can only assume they've received advice on this poorly thought out message delivery from the same place they received that awkward gesture and body language coaching. I'm sorry to say that the combination comes across as insincere.
  • vital_beach2 hours ago
    their entire defense is "we are totally trustworthy! it's not our fault some 'bad client' opened and shared a spreadsheet we negligently used as a publicly accessible database of our fraud"
  • nathanwh3 hours ago
    I don’t understand the screenshot, the “attacker” sent that to customers? Or Delve created this screenshot as a dramatic reenactment? The post is not clear
  • mememememememo2 hours ago
    They sound like me when I was learning SOC2. Ooh now I think I sorta get it. Lucky for me I was a mere employee and had consultants helping me.
  • aaronrobinson3 hours ago
    They look guilty in that picture
  • mellosouls2 hours ago
    Subject being discussed here:

    https://news.ycombinator.com/item?id=47634690

  • jazzpush22 hours ago
    It's important to note that pathological liars don't stop lying. In fact, when they're caught lying red-handed, they usually double down and lie even more.
    • mememememememo2 hours ago
      I also assume these damage control type missives to be very misleading. Seen so many of these on HN over the years.
  • pinkmuffinere2 hours ago
    At the bottom of the page, I see an ad claiming “don't let manual compliance slow you down.” That really seems tone deaf lol
  • 3 hours ago
    undefined
  • 2 hours ago
    undefined