Something I have always wondered about: if you find a security problem in publicly available software, short the company's stock, and then post the hole to full-disclosure, is that insider trading?

(Incidentally, I have been in this situation before, although not with any money to invest in the market ;)

Ok, so according to that he wasn't an insider since he didn't own over 10%, only 6,2%. Thanks.

Hmmm...but isn't the fiduciary duty of the CEO imputed in this case? From the Wikipedia article:

in many jurisdictions, in cases of where a corporate insider "tips" a friend about non-public information likely to have an effect on the company's share price, the duty the corporate insider owes the company is now imputed to the friend and the friend violates a duty to the company if he or she trades on the basis of this information.