The NSA has said that it shares most of the bugs it finds, but not all of them.
Speaking at an event at Stanford University, NSA director Mike Rogers said that President Barack Obama told him that the default decision should be to share information on new vulnerabilities.
“He also said, look, there are some instances when we’re not going to [share vulnerability information]. The thought process as we go through this policy decision, the things we tend to look at are, how foundational and widespread is this potential vulnerability? Who tends to use it? Is it something you tend to find in one nation state? How likely are others to find it? Is this the only way for us to generate those insights we need or is there another alternative we could use?” Rogers said, reported Threatpost.
VIEW FULL STORY
