22 July 2021

China's new software policy weaponizes cybersecurity research


The Microsoft Exchange server hack that the U.S. just attributed to China could become an even more common and dangerous occurrence with the announcement of China’s new rules for software vulnerabilities. The regulations, which go into effect in September, force foreign firms to disclose these faults if they want to do business in China. In so doing, they weaponize the vulnerability discovery process and have significant national security consequences for the U.S. and its allies. A [...]