How responsible are Google’s Project Zero disclosure policy changes? Let’s ask the industry and see what it thinks shall we…
Google’s elite vulnerability-hunting team, known as Project Zero, scored some major successes during 2019 with disclosures regarding Signal, iMessage and LastPass to name but a handful. There is no doubting the skill of the team at Project Zero, but there has been plenty of debate surrounding the arbitrary 90-day disclosure deadline that it imposes upon vendors.
Click here to read complete article