A recent blog post written by Oracles CSO caused a heavy storm in the infosec industry. Many people (mis)understood the blog post as a direct attack against security researchers, crowd vulnerability hunting and Bug Bounties in general. The key message, if we read between the lines, is that the security of [all] our products is not the main priority for our business. Oracle devotes its internal security resources to what the company considers most important for their business continuity, profitability and cash flow.”]

