As concerned cybersecurity experts who have dedicated our lives to improving the security of the online environment, we urge you to reconsider the vulnerability disclosure requirements under the proposed EU Cyber Resilience Act (CRA). While we appreciate the CRA’s aim to enhance cybersecurity in Europe and beyond, we believe that the current provisions on vulnerability disclosure are counterproductive and will create new threats that undermine the security of digital products and the individuals who use them.

Download Full Text Below

Download PDF

Read Next

Comments
Technology

Cybersecurity, Better Identity Coalitions Submit Comments to NIST on Agentic AI

The Cybersecurity Coalition and the Better Identity Coalition submitted comments to NIST on agentic AI.

Blog Post
Government

Refreshing America’s Cyber Posture: The New National Cybersecurity Strategy and How to Make Sure It Succeeds

The White House released its highly-anticipated 2026 National Cybersecurity Strategy, outlining how the U.S. federal government intends to protect government systems, critical infrastructure, businesses, and citizens.

Blog Post
Technology

CISA Shifts Federal Cyber Security Landscape with Sweeping Mandate to Replace End-Of-Life Network Devices

CISA issued a compulsory directive to all federal agencies targeting boundary network devices that are “end-of-service."