Microsoft Threat Intelligence has discovered a macOS vulnerability, tracked as CVE-2025-31199, that could allow attackers to ...

Unpatched Apple devices remain exposed to Sploitlight, a macOS flaw that allows unauthorized access to private user data ...

Coordinated vulnerability disclosure (CVD) is a process intended to ensure that these steps occur in a way that minimizes the harm posed by vulnerable products. The Guide provides an introduction ...

The vulnerability, ZDI-CAN-25373, is being actively exploited by cybercriminals this year. Windows File Explorer flaw allows malicious LNK files to target users across different VLANs.

Experts say many factors affect the coordinated vulnerability disclosure process, which can confuse CISOs and sometimes leave them clueless about the extent of the vulnerabilities reported.

The FTC also noted that the Template offers companies “an adaptable model for implementing a vulnerability disclosure policy appropriately tailored to the company’s size and resources.” ...

Billington Global Automotive Cybersecurity Summit panel on coordinated vulnerability disclosure programs. Credit: CSPAN Back in July 2016 at the first-ever Billington Global Automotive ...

Microsoft is changing the way in which it handles vulnerability disclosures, now moving to a model it calls coordinated vulnerability disclosure, in which the researcher and the vendor work ...

Responsible disclosure has been the “law of the land” for almost 10 years now and by all measures — the raw numbers of total vulnerabilities, the average time to patch, the potency of ...

If you should discover such a vulnerability, we would very much appreciate your reporting it to us by sending an email to: [email protected]. By reporting the vulnerability before you make it known to the ...

Cyber group calls for coordinated vulnerability disclosure policies By Derek B. Johnson March 7, 2019 ...