Vulnerability Management = Your Security.
What Is Vulnerability Management?
Vulnerability management is an ongoing process of identifying, evaluating, remediating, verifying and reporting vulnerabilities in systems and software.
Vulnerabilities Management can include issues with the underlying code as well as configurations pertaining to permissions and network capabilities.
The aim of vulnerability management is to identify and remediate known vulnerabilities and apply security patches within a defined time objective.
Why Is Vulnerability Management Important?
Help meet laws, regulations, and compliance standards. These may include such regulations as the General Data Protection Regulation (GDPR) for personal information collected during customer interactions, and similar regulations.
The risks of ignoring Vulnerability management can include exposure to leaks and breaches, loss of productivity, and loss of reputation.
How do I report a vulnerability to MDT?
If you believe you have discovered a security or privacy vulnerability that affects MDT systems or services, please report it to us. We welcome reports from everyone, including security researchers, developers, and customers.
To report a security or privacy vulnerability, please send an email to SWsecurity@mic.com.tw that includes:
- The specific product and software version(s) which you believe are affected.
- Description of the behavior observed as well as the behavior that you expected.
- A list of steps required to reproduce the issue and a video, if the steps may be hard to follow.
For the protection of our customers, MDT doesn't disclose, discuss, or confirm security issues until our investigation is complete and any necessary updates are generally available.
MDT commitment to Vulnerability Management?
MDT commits to remediate known vulnerabilities and apply security patches to support systems or services, for a period of one calendar year from the last sell date.
- The ‘last sell date’ refers to the invoice date MDT sold to its customer.