Germany Says Software Companies Need to Take Care of Their Own Security Instead of Blaming Governments

FILE – In this May 13, 2017 file photo, a screenshot of the warning screen from a purported ransomware attack, as captured by a computer user in Taiwan, is seen on laptop in Beijing. Global cyber chaos is spreading Monday, May 14, as companies boot up computers at work following the weekend’s worldwide “ransomware” cyberattack. The extortion scheme has created chaos in 150 countries and could wreak even greater havoc as more malicious variations appear. The initial attack, known as “WannaCry,” paralyzed computers running Britain’s hospital network, Germany’s national railway and scores of other companies and government agencies around the world. (AP Photo/Mark Schiefelbein, File)

Germany’s interior ministry says software companies need to do their own homework, rather than blame governments for security breaches.

Microsoft’s top lawyer, Brad Smith, had criticized governments Sunday for “hoarding” vulnerabilities and urged authorities to report security problems to IT firms “rather than stockpile, sell, or exploit them.”

Interior ministry spokesman Tobias Plate said “someone who doesn’t do their homework trying to make others responsible for not pointing out this homework needs to be done seems to me to mix up cause and effect.”

Plate told reporters in Berlin on Monday that the German government had published a new cybersecurity strategy last year that includes a proposal to hold IT companies liable for security flaws.

German rail company Deutsche Bahn’s platform displays were hit by the global “ransomware” cyberattack.

Source: Associated Press