Risky Business #195 -- HD Moore on the new, 'legit underground'
Thu, 05/26/2011 - 16:20
On this week's show we're chatting with HD Moore all about a recent decision by research house VUPEN to refuse to share their research into Chrome vulnerabilities with Google.
The French group likely sells 0days to governments, militaries and intelligence agencies to use on offensive operations -- so of course sharing its exploit information wouldn't make much sense for them. But what does this mean? Will we see any bugs in the open anymore? Or will they all go underground and be sold to governments?
Yes it's old news, and we saw how many times the reverbed pwnserised got used in the news segment, for anyone who's interested in how many times Sony actually got owned check out the fine folks at datalossdb.org and attrition.org.
http://datalossdb.org/incident_highlights/53-sony-had-how-many-breaches
http://attrition.org/security/rant/sony_aka_sownage.html