Business Roundup Week Ending September 20

Categorized under:

,
Photo of author
Written By Nathan Ingram

1 thought on “Business Roundup Week Ending September 20”

  1. It’s unclear why you are saying that Patchstack’s VDP Platform is new. It has been around for quite a while. It is also well known to not be working well. For example, just over a year ago we wrote about how a plugin in the program hadn’t actually fixed a vulnerability and Patchstack didn’t catch that: https://www.pluginvulnerabilities.com/2023/09/08/plugin-that-is-part-of-patchstacks-vulnerability-disclosure-program-vdp-still-contains-publicly-disclosed-sql-injection-issue/

    Many of the “vulnerabilities” that Patchstack takes credit are not really vulnerabilities, so the percentage cited is probably way off. But it is a big concern that many claimed vulnerabilities are being reported to a company selling access to information about vulnerabilities instead directly to the developers. As the CEO of Patchstack has said, it isn’t ethical to be reporting vulnerabilities to someone other than the developer.

Comments are closed.

A2 Hosting
Omnisend
WordPress.com