Read the following articles: Greenberg (2015), Shahani (2017), and Howell O’Neill (2021)
For Greenberg (2015): decide if there was an ethical dilemma with this type of research. If so, describe what the dilemma was, and how you would have worked through it.
For Shahani (2017): decide if Facebook was justified in its decision to block the reporter from its service.
For Howell O’Neill (2021): discuss the pros and cons of Google’s decision to disclose. What would you have done?
1. Document your analysis in a single document. Upload the document to Moodle.
2. Also discuss the following scenario.
Suppose that you are a security researcher who has discovered a vulnerability in all versions of Google Chrome. To test your discovery, you write an exploit that turns out to be successful in 100% of the times you run it, and which does not affect the reliability of the target system at all. Successful exploitation of the vulnerability will enable an attacker to completely control the computer running the Chrome browser.
Answer these questions:
a. Was it ethical and legal to target Chrome and discover the vulnerability?
b. Was it ethical and legal to develop an exploit for the vulnerability you discovered?
c. Now that you have confirmed that you are sitting on a 0-day vulnerability, with a proof-of-concept exploit, what would be your next course of action?
