Hey CIA, You Held On To Security Flaw Information—But Now It's Out. That's Not How It Should Work
- Submitted by: Love Knowledge
- Category: Justice
The worst thing that could happen is for users to lose faith in encryption-enabled tools and stop using them. The releases do reaffirm that users should make sure they are using the most current version of the apps on their devices. And vendors should move quickly to patch these flaws to protect users from both government and criminal attackers.
The dark side of this story is that the documents confirm that the CIA holds on to security vulnerabilities in software and devices—including Android phones, iPhones, and Samsung televisions—that millions of people around the world rely on. The agency appears to have failed to accurately assess the risk of not disclosing vulnerabilities to responsible vendors and failed to follow even the limited Vulnerabilities Equities Process. As these leaks show, we're all made less safe by the CIA's decision to keep -- rather than ensure the patching of -- vulnerabilities. Even spy agencies like the CIA have a responsibility to protect the security and privacy of Americans.
EFF v. NSA, ODNI - Vulnerabilities FOIA
Related items
- The New COINTELPRO? Meet the Activist the FBI Labeled a “Black Identity Extremist” & Jailed 5 Months
- Poor People’s Movement Continues Wave of Nonviolent Civil Disobedience
- Stop Using Discriminatory AI, Human Rights Groups Say
- How to Wrestle Your Data From Data Brokers, Silicon Valley — and Cambridge Analytica
- Voices from the Mass Shooting Generation: Youth from Around Country Descend on D.C. to Demand Change
Comments (0)