The only way security issues are ever fixed is when reporters call them out on it.
Or do you think Stagefright on Android would have ever been fixed if the exploit wasn't publicly disclosed? The threat of public disclosure is the only thing security researchers have as leverage to get a company to do the right thing.
Or do you think Stagefright on Android would have ever been fixed if the exploit wasn't publicly disclosed? The threat of public disclosure is the only thing security researchers have as leverage to get a company to do the right thing.