Newsletters

Select newsletters below and click the button to sign up!

Boston News NY News
DC News Internet Daily
SiliconValley News
InternetNews Business Report




Become a Marketplace Partner


Partner With Us


Internetnews Bloggers

Recent Entries

Archives

July 2009
Sun Mon Tue Wed Thu Fri Sat
      1 2 3 4
5 6 7 8 9 10 11
12 13 14 15 16 17 18
19 20 21 22 23 24 25
26 27 28 29 30 31  

Monthly Archives

Search The Blog

Netstat -vat by Sean Michael Kerner (bio)

A command line view of IT



Does the US Government pay for zero-day exploits? #BlackHat

By Sean Michael Kerner on July 30, 2009 6:36 PM
NSA_SMALL_less_yellow1.jpgFrom the 'I've always wondered' files:

LAS VEGAS. I'm in the super mega Feds vs Ex-Feds panel now at Black Hat and already I've learned something I didn't know.

There is a divergence of opinion in the security industry about whether or not people should buy zero-day exploits. Tipping Points has a whole business model built around it and it seems to work for them - but what about the government?

Does the US Government buy zero-day exploits?

"I don't buy zero days," US-CERT director Mischel Kwon said.
 Kwon is just one branch of the government.

The NSA had a less specific answer.
 "I can tell you we have a policy but I'm not going to tell you what it is," NSA agent Richard Marshall said.

PIC: Richard Marshall Credit: Sean M. Kerner

| Comments (0) | TrackBacks (0) | Share

0 TrackBacks

Listed below are links to blogs that reference this entry: Does the US Government pay for zero-day exploits? #BlackHat.

TrackBack URL for this entry: https://swarm.jupitermedia.com/mt-tb.cgi/8602

Leave a comment