The Google logo adorns the exterior of the Google building in New York City. Google’s Project Zero on Thursday said it will not share technical details of vulnerability for 30 days if a vendor patches it before the 90-day or 7-day deadline set by Google. (Drew Angerer / Getty Images)

Google’s Project Zero on Thursday said it will not share technical details of vulnerability for 30 days if a vendor patches it before the 90-day or 7-day deadline set by Google.

In public mail, Project Zero said the 30-day period should help encourage patched adoption: “We are changing our overt policy to re-focus on reducing the time it takes to fix vulnerabilities, improving current industry standards on overt time frames, and also changing when we publish technical details, ”Google wrote.

Please register to continue.

Already registered? Log in.

Once you register, you will receive:

  • News analysis

    The context and understanding you need to be at the forefront of the most important developments in cybersecurity. Perspectives of CISO and practitioner; strategy and tactics; solutions and innovation; policy and regulation.

  • Archives

    Unlimited access to almost 20 years of SC Media analysis and news that you can use.

  • Daily Newswire

    SC Media’s key morning briefing for cybersecurity professionals.

  • Learning Express

    One-click access to our extensive program of virtual events, with convenient calendar reminders and the ability to earn CISSP credits.