Exploits developed by the National Security Agency are very likely at the core of a destructive breed of the WannaCry malware that is wreaking havoc around the globe.
The release of NSA tools into the wild by the Shadow Brokers group has raised concerns about the process by which IT vulnerabilities discovered by NSA hackers are shared with software and hardware vendors.
A new bill in the Senate would codify the administrative Vulnerabilities Equities Process into law and create a legal framework for how agencies decide whether to inform a vendor about a vulnerability or to retain it for the purposes of espionage.
