O Linux foi o alvo, já que é um sistema operacional amplamente proliferado. No entanto, é grande comunidade e desenvolvimento de código aberto deve ajudar seus desenvolvedores a lidar com as vulnerabilidades mais facilmente do que as plataformas de código fechado.
Aqui está uma declaração oficial sobre o Vault 7 de Nicko van Someren, diretor de tecnologia da The Linux Foundation:
While it is not surprising that Linux would find itself a target, the open source project has a very fast release cycle, meaning that kernel updates are released every few days to address issues that are found. Linux is an incredibly active open source project. Thousands of professional developers and volunteers - including many of the most talented in the world - are constantly contributing improvements and fixes to the project. This allows the kernel team to release updates every few days -- one of the fastest release cycles in the industry. Rapid release cycles enable the open source community to fix vulnerabilities and release those fixes to users faster.
Ele continua dizendo:
Anecdotally, o que eu vi principalmente quando li sobre o Vault 7 foi o Windows sendo alvo, juntamente com telefones Samsung e TVs inteligentes. A moral da história é: mantenha seus sistemas atualizados e fique de olho nos boletins da CVE, não importa o que você esteja executando.Further, The Linux Foundation's Core Infrastructure Initiative (CII), which has the backing of many leading technology companies, is working to actively assist open source projects globally to help them develop their code using best practices proven to yield more secure results. Decades of software development tell us software will never be bug free. Through the work of open source communities, assistance from programs like CII and engagement with a vast pool of talent and support from contributing companies, we can enable open source software communities to continue producing some of the most secure software on the planet.