Oh come on. "No comment" is always what a company says in a situation like this, where saying anything else might hurt them in a future lawsuit. It doesn't mean they don't care, it means they have lawyers with the bare minimum level of competency.
I've seen statements that at least pretend like the company cares and the steps they are taking to deal with the issue.
Something along the lines of "the safety of our users is our highest priority and we are investigating these reports", no admissions, no legal risk, but they couldn't even do that much.
> "the safety of our users is our highest priority and we are investigating these reports", no admissions, no legal risk
That statement contains both admissions and legal risk! If they aren't actually investigating the reports (entirely possible), it's a lie. If they don't actually mark "safety" bugs p1 (almost certainly possible), it's a lie.
...which is why no comment looks so bad, because those are easy things that extremely should be happening. (Though "highest" priority shouldn't be taken so specifically.)
No comment is the worst way to avoid that risk, and should be looked down upon.
They do not care, people need to stop trusting their lives to this company.