[ju-st]

> So, we involved the BBC who helped us get their attention. Mitsubishi have since been very responsive to us! They are taking the issue very seriously at the highest levels.

So Mitsubishi apparently has no business process for reporting security issues but they are aware that security is important!

[csours]

DISCLAIMER: I work for GM.

I was shocked to read that GM was the second major (first if you don't count Tesla as major) automaker to set up a responsible disclosure program. [1]

1. http://arstechnica.com/security/2016/01/gm-embraces-white-ha...

[vvanders]

Except that GM pays zero dollars for their bug bounties, unlike Tesla:

https://bugcrowd.com/tesla

[csours]

Can you find me Toyota's bug bounty or responsible disclosure page? BMW? Mercedes? Ford? Any other major OEM?

I know that GM has done many bad things and done many things badly in the past, but it does seem that an old dog can learn new tricks.

[tobltobs]

Bounties not involving any compensation are indeed a kind of new trick.