If you're talking about this story, the Google researcher's version (which seems... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		mbrubeck on Feb 7, 2011 \| parent \| context \| favorite \| on: Why you don't have any Gingerbread If you're talking about this story, the Google researcher's version (which seems to be borne out by Microsoft's later responses) is that he disclosed the vulnerability only after giving Microsoft access to his findings and tools, and warning them several months in advance of the disclosure: http://arstechnica.com/microsoft/news/2011/01/internet-explo...

kenjackson on Feb 7, 2011 [–]

Or this one where the Google employee gave Microsoft a whole five days: http://threatpost.com/en_us/blogs/does-google-have-double-st...

And who does full disclosure on New Year's Day? That's like waiting for a natural disaster and then saying, "BTW, been sittin on this too... full disclosure".

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact