This is what I'm talking about. Security researchers should not have to do this to find a contact to report a bug. https://twitter.com/tactical_intel/status/684506111894929408 …
This Tweet is unavailable.
@KimZetter true. hey @tactical_intel I can connect you… CC: @ErrataRob
-
-
In today's corps, there's simply no person to report a vuln to http://blog.erratasec.com/2016/01/mythical-vuln-disclosure-program.html …
@joshcorman@KimZetter@tactical_intel -
@ErrataRob@joshcorman@tactical_intel That was lightning speed. -
@KimZetter@ErrataRob@tactical_intel logic leaps can be made pretty fast ... -
@joshcorman@KimZetter@tactical_intel it's 20 years experience on both sides of vuln disclosure -
@ErrataRob@KimZetter@tactical_intel I have counter-evidence to your claim. Safety Critical Co's have done differently; heading our way. -
@joshcorman I've worked with "safety critical companies". That was the point of my piece -- they deal with all safety this way.
End of conversation
New conversation -
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
@joshcorman@KimZetter@tactical_intel They have a supersecret vuln disclosure program? Doesn't keeping it a secret defeat the purpose? - End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.