WatchGuard Didn't Explicitly Disclose a Flaw Exploited by Hackers

The security vendor kept a critical vulnerability in its firewall appliances quiet even as it was under attack from a Russian hacking group.

source https://www.wired.com/story/watchguard-didnt-disclose-vulnerability-cyclops-blink