Billington Global Automotive Cybersecurity Summit panel on coordinated vulnerability disclosure programs. Credit: CSPAN Back in July 2016 at the first-ever Billington Global Automotive ...

Coordinated vulnerability disclosure (CVD) is a process intended to ensure that these steps occur in a way that minimizes the harm posed by vulnerable products. The Guide provides an introduction ...

Cyber group calls for coordinated vulnerability disclosure policies By Derek B. Johnson March 7, 2019 ...

Coordinated vulnerability disclosure programs, often called “bug bounty” programs, will become much more widely adopted over the next few years. Here’s an exclusive interview with Marten ...

SEI researchers reduce cybersecurity risk by conducting and promoting coordinated vulnerability disclosure, researching and publishing vulnerability discovery tools and techniques, and improving ...

The FTC also noted that the Template offers companies “an adaptable model for implementing a vulnerability disclosure policy appropriately tailored to the company’s size and resources.” ...

Expert says coordinated disclosure is a form of censorship After Google disclosed a second Microsoft vulnerability, complete with proof-of-concept code, the software giant accused them of playing ...

However, Google originally shared the vulnerability details with Microsoft on October 13, 2014, and it adheres to a strict 90-day disclosure policy. When Microsoft's 90 days were up, Google shared ...

MDIC Releases Report on Medical Device Cybersecurity, Advancing Coordinated Vulnerability Disclosure October 01, 2018 11:59 AM Eastern Daylight Time ...

Sen. Mark Warner, D-VA., penned a letter to Defense Department Chief Information Officer Dana Deasy this week stressing the value of the agency’s vulnerability disclosure programs and ...

Security Advisor Microsoft Calls Google's Windows Security Disclosure a 'Gotcha' Move Microsoft said that Google released information on a Windows 8.1 flaw even though a fix was on its way. By ...

Adobe launched its first vulnerability disclosure program this week. It will use the HackerOne platform and will not pay out bounties, instead researchers can bulk up their HackerOne reputation ...