Google

Google Project Zero Cuts Bug Disclosure Timeline to a 30-Day Grace Period


Join experts from Digital Shadows (Austin Merritt), Malwarebytes (Adam Kujawa) and Sift (Kevin Lee) to find out how cybercrime forums really work.


Vulnerability management and patching has long been a difficult endeavor , especially for larger organizations that have trouble keeping up with every bug that comes along and affects various aspects of their IT networks.


However, the project didn’t see ” a significant shift in patch development timelines” that it had hoped for with its 2020 disclosure policies, he explained.


Moreover, vendors repeatedly raised concerns about publicly releasing technical details about vulnerabilities and exploits before most users had installed the patch, Willis said.


ET during a FREE Threatpost event , “Underground Markets: A Tour of the Dark Economy.” Experts from Digital Shadows (Austin Merritt) and Sift (Kevin Lee) will take you on a guided tour of the Dark Web, including what’s for sale, how much it costs, how hackers work together and the latest tools available for hackers.


The zero-day flaw research group has revised its disclosure of the technical details of vulnerabilities in the hopes of speeding up the release and adoption of fixes.






Powered by Blogger.