back to article Proposed PATCH Act forces US snoops to quit hoarding code exploits

Two US senators have proposed a law limiting American intelligence agencies' secret stockpiles of vulnerabilities found in products. The Protecting our Ability To Counter Hacking (PATCH) Act [PDF] would set up a board chaired by an Department of Homeland Security (DHS) official to assess security flaws spies have found in code …

Silver badge

knee jerk reaction by some electoral type who knows nothing.

If they did know anything they'd expand it outside the snoopy services dept.

dont they know there are other people who find vulns?

The NSA isnt in charge of cyber security testing!

Gold badge

Congratulations NSA you have found a new vuln in an OS

You may well be the first to find it.

But you also presume you're the last.

History says you're wrong.


"The bill is a response to last week's WannaCry ransomware outbreak"

"It's designed to force the US intelligence agencies to pass on vulnerabilities to developers and hardware makers if there is evidence other people are exploiting them."

So it isn't a response to WannaCry then.

Silver badge

Utterly toothless, without time limits

They can establish any review process they like. Simply make sure that - not hard for government agencies - it takes a year or so for any vulnerability to trundle through the review process. It's as old as time, if you don;t want to do something, drag it out forever.



POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon


Biting the hand that feeds IT © 1998–2018