Some security experts said that it is not a zero-sum issue — that researchers could explore the exploits without going public with them. Matt Graeber, director of research at security firm Red Canary, urged researchers to refrain from releasing exploit code and instead recommend defensive measures based on their knowledge of the exploit.
As debates over security research ethics rage on, so, too, do the compromises of organizations running vulnerable Exchange Server software. The FBI said Wednesday that all 56 of its field offices were investigating malicious Exchange Server activity.
Previous Post
Next Post
