Google’s Project Zero disclosure policy change evokes mixed reactions

How responsible are Google’s Project Zero disclosure policy changes? Let’s ask the industry and see what it thinks shall we…

Google’s elite vulnerability-hunting team, known as Project Zero, scored some major successes during 2019 with disclosures regarding Signal, iMessage and LastPass to name but a handful. There is no doubting the skill of the team at Project Zero, but there has been plenty of debate surrounding the arbitrary 90-day disclosure deadline that it imposes upon vendors.

Click here to read complete article