Two researchers from the tiny Mediterranean island of Malta have been active and selling secret flaws in computer code to governments. Their clients include the NSA, Iran, South Africa and South Korea. One piece of output from this type of company is possibly Stuxnet, the malware created/bought by US and Israel to put a wrench in Iran’s Uranium enrichment process. http://alrt.co/16O2Kne
Takeaway: Microsoft recently upped its maximum reward to $150,000 for these zero-day exploits. The value of such information is obviously dependent on the target and its consequences. In the corporate world, very few things can be done in respect to protection of third-party hardware and software, so companies must instill active monitoring of suspicious activities and fast response time to mitigate identified threats.