For those researchers out there that thought the Zero Day Initiative was not offering enough money for your zero day exploit, rejoice. WabiSabiLabi, a swiss based company, is offering an auction site for new unreported vulnerabilities. According to the companies home page:
WabiSabiLabi is aiming to a single moving target: to bring the world closer to zero risk.
So how does this fall into arguments for responsible disclosure? Are governments, vendors, and criminals going to start an open bidding war over the security of the infrastructure?
