On January 7, 2020, JD.com caused a large number of products to be sold at 0 yuan or ultra-low prices and shipped due to incorrect coupon settings. Many netizens also said that they received the goods and posted screenshots of the goods on the Internet. The following is a screenshot of the purchase:
After that, JD.com made an explanation about the incident and will intercept the order and recall the shipped goods.
"About 2020-1-7, a large number of 0 yuan single activity description"
Dear Jingdong users, everyone, because of the wrong setting of coupons on January 7th, a large number of products were sold and shipped at 0 yuan or ultra-low prices. At present, Jingdong has made a plan to deal with this.
1. Jingdong has already intercepted the orders that have not been shipped, and will not ship them in the future.
2. For the products that have been shipped, JD.com has already intercepted the products, and the products will be recalled.
3. For some signed orders, if you are satisfied with the product in hand, you can buy it at a 20% discount of the original price. If you are not satisfied, please cancel it directly. After cancellation, the delivery staff will come back to the door within 24 hours. Thank you for your cooperation. Because of the apologies that this error brought you, JD.com deeply apologizes, all the orders that have been recalled or intercepted, after the successful processing, the system will automatically issue you a 20 yuan no-threshold coupon as compensation.
Thank you for your support to Jingdong, and wish you all a Happy New Year in advance.
On the Internet, it was reported that all the project team responsible for small household appliances in JD.com was expelled, and there was no compensation for the year-end bonus, and it might even be sued and held accountable by JD.
Many IT practitioners say that the occupational risk is high, because a "careless" will bring a "major bug" to the sky, the company suffers heavy losses, and individuals face the risk of compensation or even jail time.
02
Here I can’t help but remind me of the "Fighting a lot of wool incident" in the early morning of January 20 last year. It is also a bug in the coupon. Users can directly receive a 100 yuan coupon without threshold, which is universal (except for special products). The validity period is one. year. The wool party was awakened by his companions in the middle of the night and began to squeeze the wool frantically.
After that, Pinduoduo removed all the 100 yuan no-threshold coupons from the shelves around 9 a.m. on the 20th, and all unused coupons received before were also removed. And the official response stated that the incident was the use of platform loopholes to make unfair profits by the black-and-ash industry group. The company has fixed the loopholes in the first time and reported the case to the public security organs. The net spread of the wool incident caused Pinduoduo's estimated loss of 20 billion.
03
Back in 17 years, some netizens broke the news that Alipay has a loophole. Strangers have a 1/5 chance to log in to your Alipay, while acquaintances may log in to your Alipay 100%.
The method is like this: log in to the mobile account-forget the password-the mobile phone is not around-choose 1 of 9 pictures of things bought on Taobao-choose 1 of 9 pictures of friends to verify-reset the password-log in successfully .
After successfully logging in, you will have all the functions of Alipay. Support password-free payment. Even directly scan the QR code to pay without a password.
From the steps of Alipay to change the password, such as passing the verification of acquaintances and recently purchased goods, there is a great insecurity. For acquaintances, or even strangers in WeChat friends, it is easy to obtain this information! !
Afterwards, Alipay responded to this matter:
Some netizens tried later, and found that the login password was indeed unable to be retrieved according to the online transmission method. In other words, Alipay has upgraded the system to fix this loophole.
Enlightenment
The above bug "accidents" are only known to the majority of netizens because of a hot search. There are many more bug "accidents" in the actual software. Some have been fixed in time and have not been exposed to the public eye, and some have been exposed but have not caused major repercussions. Review these software "accidents" above, whether it is an operational accident or a test accident. In actual work, development/testing/operation/risk control cannot escape with regard to the ownership of responsibilities. As a professional software test engineer, I have the following thoughts:
- Possess excellent professional skills to make testing work "impeccable"
As a professional software test engineer, you can't cause bug "accidents" because of inadequate testing skills. The first thing we must ensure is the rigorous and impeccable work of our job, so we need to have:
Software testing skills : testing process, bug management process, planning/use case/report writing, linux, database, use of related testing tools; computer network knowledge, positioning problems and analysis, etc.;
Programming ability : such as java, Python; as much as possible to understand the implementation logic of the development code, code design and structure, and database structure;
Product business knowledge and industry background: In addition to the business itself, learn more about the entire industry background and analyze competitive products; adopt different testing strategies and methods according to different businesses
- Break away from traditional job responsibilities and focus more on product design thinking
Like the above Alipay bug, it cannot be said that there are flaws in the development implementation logic or test coverage. And more likely it is the imperfect security level design.
More than 90% of our test engineers respect the product and conduct tests in accordance with product requirements. Is this wrong? Looks right. But "testing is equivalent to half a product manager" can't just be an empty word, it should be based on the product design itself to think, to doubt!
Do user permissions need multiple levels of control? Will this design expose security issues? Are the operating steps too cumbersome for novice users? Does sensitive information need to be encrypted? Wait. After all, not product managers or developers can think of everything, and they do everything.
- Foresee "hand disabled" behaviors in advance to raise awareness of safety risks
Like Jingdong’s bug, it may just be a “hand-disabled” behavior in the operation, and the coupon is set incorrectly. But because the loss was too large, we as a test can also bear the blame. As a professional software testing engineer, especially for products that involve money, we can try our best to foresee the possible "hand-disability" behavior, and then consider more if the "hand-disability", our system can deal with the "hand-disability" "Results processing power.
For example, like this coupon bug, is there a reminder of no threshold amount? Whether to set the interface automatic inspection function? Whether to monitor the abnormal data and set the alarm mechanism, and whether it has the cancellation function, etc.
- Strengthen alpha and beta tests based on user behavior
Like many problems, specific user scenarios are needed to appear. When a professional testing team is testing, it will be restricted by certain user usage scenarios. Testers are limited to individual users, and naturally they do not anticipate the real scenes of all users.
At this time, alpha and beta tests can involve a large number of real users, artificially traverse more real user usage scenarios through "crowd tactics", and feedback bugs that appear in real scenarios in real time.
In this way, when the product is officially released, problems that many users may encounter can be avoided in advance. However, this testing method must be controlled based on the data security of the product itself, which is not necessarily applicable.
Recommend a software testing learning exchange group: 785128166, there are shared videos, interview guidance, test materials, mind maps, and videos in the group. They are all dry goods, you can download and watch. Mainly share test foundation, interface test, performance test, automated test, TestOps architecture, Jmeter, LoadRunner, Fiddler, MySql, Linux, resume optimization, interview skills, and actual video data of large-scale test projects. Use every minute and every second of your time to learn to improve yourself, and don't use "no time" to conceal your mental laziness! Try hard while you are young, and give your future self an explanation!
Public number: Programmer Erhei, after paying attention, you can receive a large amount of learning materials for free.
Good things should be shared with friends