[voakbasda]

A pattern of non-communication about high risk security issues to developers that could help mitigate their effects or to customers that will be affected by that lack of mitigation seems like intentionally malicious behavior to me.

Lack of transparency is inexcusable for a business with such an overwhelmingly prolific ecosystem that has such a broad impact on derivative technologies and the businesses that use it.

[techdragon]

Apple are culturally allergic to transparency. It’s going to be either a seismic corporate culture change if it happens quickly or it will take on the order of a decade or more for them to become comfortable with being open whenever the opportunity is appropriate. Apple is a “deny by default” sort of company at its heart.

[otterley]

Being malicious means you actually intend for people to suffer harm. Do you really think that's what Apple wants? What evidence do you have of that?

[voakbasda]

You think that they do not know that these are the consequences? When vulnerabilities are being exploited in the wild, they know that harm is being done, and then they made a deliberate choice to withhold information that could help prevent that harm. How is that decision not malicious?

[otterley]

I think you're using the word "malicious" when maybe what you mean is "irresponsible."

Please refer to the very top of the thread where I try to provide a reasonable and much more likely explanation behind what's going on.

[aaaaaaaaata]

Classic debate about whether being stupid or incompetent is the same as having ill intent.

We're still the ones being hit by a bus.

[otterley]

There’s no debate, unless you truly believe that intent should play no role whatsoever in how we judge actions, in which case, you disagree with the vast majority of post-Enlightenment society. I don’t think you would like living in a world in which strict liability made every mistake a criminal act.

[voakbasda]

I think Apple is neither stupid nor incompetent, leaving the third option: they made a choice to do harm, if only by choosing to do nothing.

[otterley]

There’s no evidence that they chose to do nothing. Again, they are probably working on it right now and we should not be surprised to see a backported fix in the coming weeks. There is already a long history of them doing just this; why do you think this time it’s different?