Responsible, open and ethical disclosure leads to more secure services and applications for everyone. Failure to support, respect, and encourage security researchers creates distrust and helps to fuel the market for the sale of vulnerabilities to unethical, though not always criminals, interests.