This is a common misperception that we've encountered with Project Zero's work, and I saw Microsoft's OSR team get the same critiques recently as well. There's no alterior motive here! We all just think that helping to improve the security of other companies is a good thing.https://twitter.com/hackerfactor/status/981589653105999874 …
-
Show this thread
-
Why? Because technology is highly interconnected, and it's not sufficient to improve your own product's security in isolation. Our users don't know or care which product had flaws that led to them hacked, they just know that technology has failed them in some way.
2 replies 21 retweets 74 likesShow this thread -
I completely understand the complaints (numerous and colorful!) around how security research gets published, but if we inadvertently make it impossible for companies to publish attack research results at all, I think that would be a big loss for security.
1 reply 5 retweets 27 likesShow this thread
... although in saying that, I've found that the reaction to Project Zero's work recently is very positive + encouraging, which is awesome!
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.