On May 27, Microsoft publicly criticized the practice of disclosing zero-day vulnerabilities—security flaws that have not yet been patched—without prior notice. In a statement on its official blog, the company emphasized its ongoing commitment to protecting customers through round-the-clock monitoring and response efforts. Microsoft reiterated the importance of Collaborative Vulnerability Disclosure (CVD) as a more responsible approach to handling such vulnerabilities, highlighting the need for cooperation between security researchers and software developers to ensure user safety.
Leave a comment