Advancing Responsible Disclosure Efforts: A Q&A With Michael Daniel Of Cyber Threat Alliance
Fortinet News, Tuesday, March 11th, 2025
Responsible disclosure has long been a topic of discussion in the cybersecurity industry. Practitioners have debated how to disclose newly identified vulnerabilities in software offerings and how companies should proceed after learning about vulnerabilities in their own products through third parties.
Earlier this week, the Cyber Threat Alliance (CTA), of which Fortinet is a founding member, introduced its Responsible Vulnerability Communication Policy, laying out guidelines for responsibly handling disclosed vulnerabilities in any product or system in a way that optimizes secure outcomes. Fortinet proudly supports CTA's adoption of this policy as part of our ongoing commitment to advancing transparent and responsible vulnerability disclosure to help better protect customers and build trust across the industry.