Vulnerability disclosure: ENISA’s guide and the Dutch approach

Huge numbers of cyber attacks exploit vulnerabilities in computer-based systems and yet vulnerability disclosure is not a straightforward matter, as the discoverer of a
vulnerability could face legal risk if they report that vulnerability. Sofie van der Meulen, Attorney at Law at Axon lawyers in Amsterdam, discusses vulnerability disclosure with a particular focus on ENISA’s recent Good Practice Guide on Vulnerability Disclosure and the Dutch approach to this issue. Read the full article.


Navigate through our knowledgebase

Related articles

Article

Focus on the authorised representative

Last week we saw publication of the new MDCG guidance on the authorised representative under the MDR and the IVDR, MDCG 2022-16. My first impression: much about the ‘what’ and not so…

Read more

Article

The 2nd edition of The Enriched MDR and IVDR is available now

It took a while, but here it is: the 2nd edition of The Enriched MDR and IVDR, updated with developments from early april 2021 to early September 2022. The first edition of…

Read more

Article

The New Product Liability Directive(s) proposals and medical devices / IVDs

On 28 September the Commission adopted two related proposals for EU regulation of no-fault liability for defective products. One proposal updates the ‘old’ Product Liability Directive (PLD) from 1985 to make it…

Read more