@ErrataRob Q: Allegedly, CIA knew Vault 7 files out there for some time. IS there rationale for NOT disclosing vulns at that point?
-
-
Replying to @emptywheel
You are right. In this case, once the 0days have been leaked, we should expect the CIA to immediately disclose/fix them.
2 replies 0 retweets 3 likes -
Replying to @ErrataRob @emptywheel
Moreover, that such a leak happened, we should distrust that the CIA can keep 0days secret in the future.
2 replies 0 retweets 0 likes -
Replying to @ErrataRob
So neither NSA nor CIA can be trusted, w/Shadow Brokers leak considered?
2 replies 0 retweets 0 likes -
Replying to @emptywheel
I think it's upon them now to prove they can be trusted in the future with 0days.
2 replies 0 retweets 0 likes -
Replying to @ErrataRob @emptywheel
The best defense for an adversary is to steal your 0days and then leak them. Must be more careful w/obvious target.
1 reply 0 retweets 1 like -
Replying to @WeldPond
Will be interesting to see if US would ever admit, if that happened here (or Shadow Brokers)
@ErrataRob1 reply 0 retweets 0 likes
W/the added benefit of the PR damage by releasing targets, ensuring Europeans know how they're targeted. @ErrataRob
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.