We're seeing a lot of incomplete or broken security fixes recently, across the board. Presumably this is leading to a lot of cheap bugs for attackers, who are generally going to be more incentivized to analyze patches than defenders are.
-
-
I can see that it's related, but most of the cases we've seen recently don't reach the level of complexity where it's clear that an additional N days of engineering time would have been the difference.
-
One of the options that we'd like to explore is being more involved in the patching process. We don't have a great level of engineer-to-engineer dialogue about this stuff, and we could be helping spot gaps early if we had more visibility.
- 5 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.