floofloof@lemmy.ca to cybersecurity@infosec.pub · 1 month agoAMD changes rules, denies researcher $10,000 bounty after taking 124 days to patch security flawwww.techspot.comexternal-linkmessage-square5linkfedilinkarrow-up143arrow-down10cross-posted to: technology@lemmy.world
arrow-up143arrow-down1external-linkAMD changes rules, denies researcher $10,000 bounty after taking 124 days to patch security flawwww.techspot.comfloofloof@lemmy.ca to cybersecurity@infosec.pub · 1 month agomessage-square5linkfedilinkcross-posted to: technology@lemmy.world
minus-squareOnomatopoeia@lemmy.cafelinkfedilinkarrow-up8·edit-21 month agoAnd simply paid they guy out of appreciation. I generally support the model we’ve had for bBug disclosure - it’s about preventing zero days - which protects the users of these products. But for AMD stuff now, go ahead and sell your discoveries, let the zero-days ruin AMDs marketing.
And simply paid they guy out of appreciation.
I generally support the model we’ve had for bBug disclosure - it’s about preventing zero days - which protects the users of these products.
But for AMD stuff now, go ahead and sell your discoveries, let the zero-days ruin AMDs marketing.