Microsoft Chastises Google Over Zero-Day Chrome Exploit Disclosure

Microsoft Gets Security Disclosure Revenge on Google

Microsoft Chastises Google Over Zero-Day Chrome Exploit Disclosure

One member of that security team, Jordan Rabet, confirmed in Microsoft's blog post that there is a security hole in Chrome and could lead to some malicious code execution.

"In this specific case, the stable channel of Chrome remained vulnerable for almost a month after that commit was pushed to "git".

The California-based company has unearthed a number of security issues within Microsoft software, and has occasionally revealed details publicly before the products are patched.

Zimbabwe v West Indies: Hosts on top in Bulawayo
The pressure eventually got onto openers Kraigg Brathwaite (3) when Kyle Jarvis (1-40) had him caught in the slips. Hope, on 56 at tea, continued to carry the innings as he marched towards three figures but lacked support.

Meanwhile, Google allows its engineers to disclose details of a vulnerability seven days after they have reported to vendors.

Microsoft also of course took the opportunity to talk about how Edge handles this sort of attack vector better than Chrome.

Given the acrimonious relationship between Google and Microsoft's security teams I expect this will not be the first such exchange over the next few months, but hopefully, the result will be safer browsers and operating systems for us all.

Putin critic Navalny released after 20-day detention
Trump were impeached, Putin said it would be "absolutely wrong" for Russian Federation to discuss USA politics. He said Russian Federation would "want it and will be striving to achieve that".

However, Microsoft is using the security flaw in Chrome to claim that its own Edge browser was protected from the same kind of security threat. The problem is that Chrome was vulnerable for a month, easy to be exploited after they made the code public.

Google acknowledged the bug and paid Microsoft a $15,000 bug bounty (which Microsoft donated to charity), but their approach to patching the bug also raised alarm at Microsoft. At any rate, as long as the two companies' fights result in their browsers getting more secure, it is a win for consumers. Past year we've heard of Google warning of a security issue in Windows.

What Microsoft is specifically criticizing Google for making the source code for the fix available via Github before the official stable channel fix was ready giving any nefarious sorts a month to find the flaw and exploit it. Rabet wrote that Google's approach was "problematic when the vulnerabilities are made known to attackers ahead of the patches being made available".

Golden State Warriors win against the New Orleans Pelicans, 128-120
The fight in practice this week left Mirotic, of Montenegro, in hospital with broken bones in his face and a concussion. Leonard's absence has put more pressure on Aldridge to pick up the slack and the 32-year-old American has delivered.

Latest News