Ah, Pete Lindstrom goes at it again in his post: Spire Security Viewpoint: So Generic (and Wrong) It Hurts: "And here's the thing: we think we can control the threat environment even when we can't, and we aren't preparing anyone for attacks, even though they are as likely today as they would be if we never disclosed another vulnerability again."
So, is vulnerability research evil? Yes? No? Check out his post...
1 comment:
"Evil" is a pretty strong word. "Futile" is a better one to describe the general state of vuln mgt. I don't rule out "evil" but I don't think it is common.
Pete
Post a Comment