EU urged to reconsider Cyber Resilience Act’s bug reporting within 24 hours

3 October 2023

A diverse coalition of cyber notables that include top security pros and researchers from ESET, Rapid7, the Electronic Frontier Foundation, and Google’s Vint Cerf, have taken the European Union (EU) to task over requiring software publishers to disclose unpatched vulnerabilities to government agencies within 24 hours of exploitation. In an open letter to the EU, 56 cybersecurity leaders said the EU’s proposed one-day vulnerability disclosure requirement under the Cyber Resilience Act (CRA) means that dozens of government agencies would have access to a real-time database of software with unmitigated vulnerabilities without the ability to protect them.

Source: SC Magazine

Date:

3 October 2023

Categorie(s):

NEWS

Tag(s):

Cyber Resilience, EU, Experts, IT, News

AWS S3 Unauthorized Request Billing Issue: An Empty S3 Bucket Can Dramatically Increase the Costs4 May 2024
Microsoft Outlook Flaw Exploited by Russia’s APT28 to Hack Czech, German Entities4 May 2024
Ex-Cybersecurity Consultant Jailed For Trading Confidential Data4 May 2024
Microsoft plans to lock down Windows DNS like never before. Here’s how.4 May 2024
Kaspersky hits back at claims its AI helped Russia develop military drone systems4 May 2024