This and similar contests contain hard lessons about the bug density of critical US software and the effectiveness of the PRC& #39;s effort to create a homegrown public-private offensive capability. These lessons need to be deeply considered by the reconstituted Biden NSC cyber team. https://twitter.com/campuscodi/status/1325474481083715584">https://twitter.com/campuscod...
While good people at NSA/CYBERCOM and CISA are certainly paying attention, the lack of a national strategy that takes into account the reality of our situation is glaring. We& #39;ve lost four years while the PRC has built an incredible (and paradoxically capitalist) ecosystem.
In pithier terms: Chinese researchers are burning full-patched iOS 0-day for $180k while our Supreme Court is considering whether security research should remain legal in the US.