Matt Rose, global director of application security strategy at Checkmarx, said he was wary about Zimperium releasing the exploit code.
“The reasoning here is that it is a real issue and consciously being ignored then by the vendor and releasing the actual code would push them to acknowledge and remediate the issue and was necessary. However, if the vendor was contacted and they acknowledged the issue and said it was being addressed immediately then I would not support the release of the exploit code,” Rose told SearchSecurity. “In this example it is irresponsible in my professional opinion and is being used to promote Zimperium’s capabilities and not protect the provider or the end users.”
Read the full report here.
Blog
Android app security tested by malware and vulnerabilities
-
By Checkmarx Team
- December 2, 2016
About the Author
Never miss an update. Subscribe today!
By submitting my information to Checkmarx, I hereby consent to the terms and conditions found in the Checkmarx Privacy Policy and to
the processing of my personal data as described therein. By clicking submit below, you consent to allow Checkmarx
to store and process the personal information submitted above to provide you the content requested.
the processing of my personal data as described therein. By clicking submit below, you consent to allow Checkmarx
to store and process the personal information submitted above to provide you the content requested.
