Microsoft pokes Google for its handling of exploits

2 min. read

Published onOctober 19, 2017

published onOctober 19, 2017

Share this article

Read our disclosure page to find out how can you help Windows Report sustain the editorial teamRead more

Recently, Microsoft found itself in the position to scold its frequent exploit nuisance finder Google, and boy did the company jump at the opportunity.

In addition to Google’s task of patching the WPA2 vulnerability that affects over millions of Android devices, the company had to address an exploit in its Chrome browser recently uncovered by Microsoft.

Based onMicrosoft’s Offensive Security Research (OSR) publishings, the company discovered a remote execution exploit that enables hackers to steal passwords saved in the Chrome browser.

More specifically,

Discovering the exploit was only the beginning of Microsoft’s work with Google as the company then decided to take the opportunity to try and dish out a backhanded lesson in dealing with vulnerability discoveries.

Our strategies may differ, but we believe in collaborating across the security industry in order to help protect customers. This includes disclosing vulnerabilities to vendors throughCoordinated Vulnerability Disclosure (CVD), and partnering throughout the process of delivering security fixes.

Despite some very public finger wagging by Google a few days ago over a Windows 7 exploit the company felt Microsoft was putting its customer at risk as it sought to apply a fix, Microsoft tried to take higher ground by allowing Google to patch its vulnerability before making the exploit public knowledge. The company’s approach was then reinforced in its publishing where Microsoft called on Google to consider following in kind with their own future discoveries.

There is no reason to believe that Google will heed Microsoft’s example, but this recent situation does highlight the differences between a veteran software company versus the relatively new comer to the industry.

Kareem Anderson

Networking & Security Specialist

Kareem is a journalist from the bay area, now living in Florida. His passion for technology and content creation drives are unmatched, driving him to create well-researched articles and incredible YouTube videos.

He is always on the lookout for everything new about Microsoft, focusing on making easy-to-understand content and breaking down complex topics related to networking, Azure, cloud computing, and security.

User forum

0 messages

Sort by:LatestOldestMost Votes

Comment*

Name*

Email*

Commenting as.Not you?

Save information for future comments

Comment

Kareem Anderson

Networking & Security Specialist

He is a journalist from the bay area, now living in Florida. He breaks down complex topics related to networking, Azure, cloud computing, and security

With KB5043178 to Release Preview Channel, Microsoft advises Windows 11 users to plug in when the battery is low#

Copilot in Outlook will generate personalized themes for you to customize the app#

Microsoft will raise the price of its 365 Suite to include AI capabilities#

Death Stranding Director’s Cut is now Xbox X|S at a huge discount#

Outlook will let users create custom account icons so they can tell their accounts apart easier#

Microsoft pokes Google for its handling of exploits#

With KB5043178 to Release Preview Channel, Microsoft advises Windows 11 users to plug in when the battery is low

Copilot in Outlook will generate personalized themes for you to customize the app

Microsoft will raise the price of its 365 Suite to include AI capabilities

Death Stranding Director’s Cut is now Xbox X|S at a huge discount

Outlook will let users create custom account icons so they can tell their accounts apart easier

Microsoft pokes Google for its handling of exploits