Microsoft criticises Google for releasing Windows bug report2015-01-12 10:20 by Daniela
Tags: Microsoft, Windows, bug
Microsoft has publicly criticized Google for revealing details about a security flaw in Windows 8.1 two days before the intended patch of the bug is released.
Google announced the security flaw this weekend. It was forced to disclose the information because of the rules of its security research project - Project Zero. According to them, a bug should be made public 90 days after Google has reported it to the company affected. Microsoft was notified about the issue in question on October 13th 2014.
Microsoft is angry because it had asked Google to hold off publishing details of the bug until the fix is released.The company claims that Google is putting users at risk meaning that once the problem has already been made public, it gives attackers a window of opportunity to exploit the vulnerability.
"Although following through keeps to Google's announced timeline for disclosure, the decision feels less like principles and more like a "gotcha", with customers the ones who may suffer as a result," writes Chris Betz, senior director of the Microsoft Security Response Center, in a post today outlining Microsoft's position. "What's right for Google is not always right for customers. We urge Google to make protection of customers our collective primary goal."
Read more -here-