[notsound]

Those groups care about whether millions of computers are vulnerable, likely including your computer. If "immediate public disclosure" was done in all cases every vuln would be exploited and patches would be much lower quality. Shortening the disclosure timeline might be a good idea, 90 days is starting to feel long.

[Lammy]

Millions of computers are still vulnerable. Not-knowing about it doesn't mean the vuln isn't there :p

[AlessandroF6587]

Being vulnerable is not the important part. They have been vulnerable for years. The problem is the probability of being exploited. If everyone knows about the exploit details before a proper patch is available the number of exploited systems will skyrocket

[danparsonson]

But now millions more people know about how to exploit it who didn't before. I don't see why you're struggling with this.

[Lammy]

You can't bully me into agreeing with you. Why are you struggling with that?

[danparsonson]

That was my first comment in the thread. I'm not bullying you; if you don't want people to challenge your statements then you came to the wrong place ;-)

[Lammy]

You are engaging in bad faith when you act like I only have the belief I have because I don't understand yours yet. Don't comment if you can't respect somebody disagreeing with you.