Security News > 2021 > July > China Taking Control of Zero-Day Exploits
2021-07-14 11:04
China is making sure that all newly discovered zero-day exploits are disclosed to the government.
Under the new rules, anyone in China who finds a vulnerability must tell the government, which will decide what repairs to make.
No information can be given to "Overseas organizations or individuals" other than the product's manufacturer.
No one may "Collect, sell or publish information on network product security vulnerabilities," say the rules issued by the Cyberspace Administration of China and the police and industry ministries.
It doesn't prevent researchers from telling the products' companies, even if they are outside of China.
News URL
https://www.schneier.com/blog/archives/2021/07/china-taking-control-of-zero-day-exploits.html
Related news
- New Mirai botnet targets industrial routers with zero-day exploits (source)
- Zero-day exploits plague Ivanti Connect Secure appliances for second year running (source)
- Nominet probes network intrusion linked to Ivanti zero-day exploit (source)
- Hackers Exploit Zero-Day in cnPilot Routers to Deploy AIRASHI DDoS Botnet (source)
- Hackers exploit 16 zero-days on first day of Pwn2Own Automotive 2025 (source)
- XE Hacker Group Exploits VeraCore Zero-Day to Deploy Persistent Web Shells (source)
- China-Linked Attackers Exploit Check Point Flaw to Deploy ShadowPad and Ransomware (source)