Get the latest tech news

U.S. Government Disclosed 39 Zero-Day Vulnerabilities in 2023, First-Ever Report

What the government didn't reveal is how many zero days it discovered in 2023 that it kept to exploit rather than disclose. Whatever that number, it likely will increase under the Trump administration, which has vowed to ramp up government hacking operations. In a first-of-its-kind report, the US government has

One-page unclassified document released by the Office of the Director of National Intelligence about zero days the government disclosed in 2023.Katie Moussouris, founder and CEO of Luta Security and an advisor to the government’s Cyber Safety Review Board until the Trump administration disbanded it last month, says that since one of the factors guiding VEP decisions is whether the vulnerability poses a risk to U.S. critical infrastructure or the general public, this means that every other time they had been resubmitted to the VEP “the answer must have been that the risk [hadn’t] increased enough for us to stop using” the vulnerabilities.” The unclassified ODNI report got little notice when it was published last month by Senator Ron Wyden (D - Oregon) after receiving it from the intelligence office as the Biden administration was coming to a close. One important piece of information about the process that is still unknown and that troubles Moussouris is how the review board makes its risk assessments about whether a zero day should be disclosed.

Get the Android app