That's not the argument, nobody is shedding tears for child abusers getting popped by the feds. The problem is you can't stop other people from abusing the same vulnerability, so you're putting innocent people in harm's way.
-
-
Working in security? Absolutely. But 98% of people in security aren't looking for 0days. Neither for governments nor to report to vendors. And sadly, most security jobs have very little impact making it harder for bad actors to use exploits against highly targeted individuals
-
Sure, if you literally refuse to accept any job that isn't spending 100% of your time looking for 0day, the job market is smaller. There are still options, VRP and similar programs. If you want to do this successfully, you need to optimize your work differently.
- 20 more replies
New conversation -
-
-
Not sure recruiter spam is a useful measure of anything. The vast (very vast) majority of people who work in security research do so without selling exploits.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
