Epic Games condemns Google for revealing vulnerabilities in Fortnite game

Epic Games’ Fortnite has started Android testing, they did not choose to publish through the Google Play app store, but directly on the official website.

Last Friday, Google disclosed security vulnerability in the Android version of Fortress Night installer that could be replaced and Man-in-The-Disk attacked. According to Google’s previous rules, they will first report vulnerabilities to relevant development leaders, and Google will disclose the details of this vulnerability when the other party releases a widely available patch or if the issue is still not resolved after 90 days. This time, after the Google shared attack demo video, Epic quickly released the patch and asked Google to give the standard 90 days to ensure user updates. However, it was rejected by Google, and the vulnerability was released seven days after the patch was released.

To this end, Epic CEO Tim Sweeney believes that Google is doing this in retaliation, which poses unnecessary risks to its Android users.

We asked Google to hold the disclosure until the update was more widely installed. They refused, creating an unnecessary risk for Android users in order to score cheap PR points.

— Tim Sweeney (@TimSweeneyEpic) August 25, 2018

Via: BBC