Agree with the first part. BluehatIL is a conference, I’m referring to a talk from Microsoft that analyzed impact of mitigation and exploitation trends.https://m.youtube.com/watch?v=PjbGojjnBZQ …
-
-
Replying to @richinseattle @taviso and
Got that - sry not a native speaker : what I mean is these exploits will not end up in public, except rare cases :-)
1 reply 0 retweets 3 likes -
-
It’s interesting to see everyone focusing on the threat of expert targeted attackers using exploits on specific high value targets. I just don’t think that’s the scenario this policy is focusing on.
2 replies 0 retweets 3 likes -
Replying to @richinseattle @taviso and
But isn't P0 researching exactly such bugs that are of value to expert targeted attackers?
2 replies 0 retweets 2 likes -
The bugs are valuable to anyone who has a motivation to exploit. I think the policy change is moot in the face of expert targeted attacks. I think it’s an attempt to see if it has any impact on opportunistic exploitation and economic loss, primarily for businesses.
1 reply 0 retweets 0 likes -
Replying to @richinseattle @marver and
Why would businesses/users suddenly rush patching when you give them less information about what they are supposed to patch. This seems completely illogical.
1 reply 0 retweets 2 likes -
Many corporations don’t deploy patches on patch Tuesday. They do testing first. I’d wager the p0 writeup have little impact on that deployment loop.
2 replies 0 retweets 2 likes -
Replying to @richinseattle @marver and
Yes businesses priotize patches depending on how severe they think a bug is. They do not believe in severity ratings given to them but want exact information instead so that they can make their own risk analysis.
1 reply 0 retweets 2 likes -
Replying to @i0n1c @richinseattle and
Most businesses do not have at all the skills to understand P0's write-ups.
3 replies 0 retweets 2 likes
I don't have the skill to interpret the results of medical studies, and yet I still benefit from them being published.
-
-
You do, by leveraging intermediate entities that do the work and provide you with advice and actionable tasks. Sounds a lot like... the MAPP program MS had/has and why we repeated constantly that immediate disclosure to the public at large was not helpful.
2 replies 0 retweets 1 like -
Replying to @hsultan75 @i0n1c and
I don't want to have the MAPP debate with you, you either already know or can guess that I don't approve of private sharing clubs. Similarly, I prefer research and studies to be public, not private.
0 replies 0 retweets 0 likes
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
