Langevin Statement on Microsoft Windows Cybersecurity Vulnerability Identified by NSA

Jan 15, 2020 Issues: Cybersecurity

WASHINGTON – Congressman Jim Langevin (D-RI), a senior member of the House Committees on Homeland Security and Armed Services, a member of the Cyberspace Solarium Commission, and the co-founder and co-chair of the Congressional Cybersecurity Caucus, issued a statement regarding a critical cybersecurity vulnerability in Microsoft Windows that was reported to the company by the National Security Agency’s new Cybersecurity Directorate:

“Today’s disclosure of a critical Windows vulnerability shows that the vulnerabilities equities process is working. When government researchers discover a vulnerability in a widely used commercial product, the bias must be towards disclosure. This is a feather in the cap of the NSA’s new Cybersecurity Directorate, which is committed to helping partners, whether government customers or private sector critical infrastructure owners and operators, defend against malicious activity. I strongly support the United States government’s continued leadership on coordinated vulnerability disclosure, leadership enhanced by the recent binding operational directive directing government agencies to have their own vulnerability disclosure policies. I look forward to working with my colleagues in Congress and on the Solarium Commission to strengthen operational relationships between the private sector and government, particularly through the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency and the Cybersecurity Directorate.”