@ErrataRob Q: Allegedly, CIA knew Vault 7 files out there for some time. IS there rationale for NOT disclosing vulns at that point?
-
-
Replying to @emptywheel
You are right. In this case, once the 0days have been leaked, we should expect the CIA to immediately disclose/fix them.
2 replies 0 retweets 3 likes -
Replying to @ErrataRob @emptywheel
Moreover, that such a leak happened, we should distrust that the CIA can keep 0days secret in the future.
2 replies 0 retweets 0 likes -
Replying to @ErrataRob
So neither NSA nor CIA can be trusted, w/Shadow Brokers leak considered?
2 replies 0 retweets 0 likes -
Replying to @emptywheel
I think it's upon them now to prove they can be trusted in the future with 0days.
2 replies 0 retweets 0 likes -
Replying to @ErrataRob @emptywheel
People like me argue that the NSA/CIA having an 0day makes us (US citizens) no less secure, but that's wrong if leaks are common
1 reply 0 retweets 0 likes -
Replying to @ErrataRob
I was bitching abt SSCI not having public hearing in Aug on Shadow Brokers, and voila, it happened (was happening) again.
1 reply 0 retweets 0 likes -
Replying to @emptywheel
To be fair, truly impactful bugs (e.g. for the latest iOS version) have not been leaked, as far as I can tell.
1 reply 0 retweets 0 likes
W/CIA leak, two different things: Assange allegedly sitting on code, but plenty there to know where to look for CIA, it seems
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.