Linked by Thom Holwerda on Fri 14th Jun 2013 17:32 UTC
Microsoft From Bloomberg: "Microsoft, the world's largest software company, provides intelligence agencies with information about bugs in its popular software before it publicly releases a fix, according to two people familiar with the process. That information can be used to protect government computers and to access the computers of terrorists or military foes." The lid has officially been blown off.
Thread beginning with comment 564781
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE: easy answer is:
by Shane on Sat 15th Jun 2013 06:17 UTC in reply to "easy answer is:"
Shane
Member since:
2005-07-06

What you're not taking into account is:

3) The US can use the zero day exploits against other nations.

People's trust in US companies is taking a beating at the moment. The US government's heavy handed approach could actually be a great reason to look into open source solutions.

Reply Parent Score: 7

RE[2]: easy answer is:
by BushLin on Sat 15th Jun 2013 10:56 in reply to "RE: easy answer is:"
BushLin Member since:
2011-01-26

That's surely the angle on this, surprised so many missed it.

Reply Parent Score: 3

RE[2]: easy answer is:
by BallmerKnowsBest on Sat 15th Jun 2013 18:03 in reply to "RE: easy answer is:"
BallmerKnowsBest Member since:
2008-06-02

What you're not taking into account is:

3) The US can use the zero day exploits against other nations.

People's trust in US companies is taking a beating at the moment. The US government's heavy handed approach could actually be a great reason to look into open source solutions.


So, in other words... 2013 will be the "Year of Linux on the (non-US government) Desktop"(tm)? Can't wait!

Reply Parent Score: 2

RE[3]: easy answer is:
by Shane on Sun 16th Jun 2013 04:23 in reply to "RE[2]: easy answer is:"
Shane Member since:
2005-07-06

So, in other words...


Very funny, but no. Not in those words.

Reply Parent Score: 3

RE[2]: easy answer is:
by zlynx on Mon 17th Jun 2013 16:52 in reply to "RE: easy answer is:"
zlynx Member since:
2005-07-20

What you're not taking into account is:

3) The US can use the zero day exploits against other nations.

Certainly they can. So can anyone else who gets early notification.

But where did that zero day exploit come from? Some of them come from code inspection, fuzzing and white-hat hackers. But most of them come from inspection of hacked machines which means that zero-day exploit is already out there being used by the bad guys.

The notification delay is so that the exploit is only used by a few bad guys instead of the entire Internet.

Reply Parent Score: 2