A Department of Commerce survey shows that 60 percent of cyber-security researchers fear legal repercussions for reporting security vulnerabilities they discover to a product’s manufacturers.
The Commerce Department’s National Telecommunication and Information Administration’s survey came through its role in a multi-stakeholder working group focused on increasing industry adoption of programs to allow researchers to report vulnerabilities — often called coordinated disclosure programs