Microsoft President Brad Smith complained that various governments "stockpile vulnerabilities."
In other words, governments and agencies find weaknesses in technology and then keep that information to themselves in case they want to use it.
Smith said the current WannaCry malware event was a very rare one, combining a piece of very sophisticated software (to do the exploit) with a simpler piece (to do the ransom), conducted by a criminal organization.
To accusations Microsoft didn't do enough to alert people about the danger, Smith said, "Microsoft has the first responsibility." He called it a "wake-up call for us," and that "we should all learn from this."
In response to questions about whether the NSA told Microsoft they had a tool that exploited the vulnerability, Smith said, "I don't want to go into the specifics about how we learned this particular problem, or by whom or when. It is a public record that we provided a patch in March. There wasn't a public statement until April.
"But what I think is also important: We need the global community to come together."
No comments:
Post a Comment