VP Rohit Sethi speaks with Slate about Microsoft’s delay in announcing a recent vulnerability

Why Did It Take Microsoft So Long to Acknowledge a Huge Security Hole That It Found?

On Tuesday, a team of researchers announced the latest widespread security vulnerability. Called FREAK, an acronym that might actually be better than POODLE, it’s a flaw that affects how HTTPS secure connections are established between browsers and Web servers, downgrading the connection to a weaker, more crackable encyrption.

Alongside the announcement, both Google and Apple made statements Tuesday about forthcoming patches for their products, especially mobile browsers. The companies each told the Washington Post and Reuters that they had patches rolling out. Apple promised its patch for early next week. But when you think about software that might be affected by a mainstream vulnerability, there’s another company that should come to mind. Where was Microsoft in all this, and was Windows affected?

Read the rest here: https://slate.com/technology/2015/03/microsoft-reacted-to-the-freak-vulnerability-later-than-apple-and-google.html


About Security Compass
Security Compass, a leading provider of cybersecurity solutions, enables organizations to shift left and build secure applications by design, integrated directly with existing DevSecOps tools and workflows. Its flagship product, SD Elements, allows organizations to balance the need to accelerate software time-to-market while managing risk by automating significant portions of proactive manual processes for security and compliance. SD Elements is the world’s first Balanced Development Automation platform. Security Compass is the trusted solution provider to leading financial and technology organizations, the U.S. Department of Defense, government agencies, and renowned global brands across multiple industries. The company is headquartered in Toronto, with offices in the U.S. and India. For more information, please visit https://www.securitycompass.com/