Updated
Updated · The Verge · May 30
Microsoft Threatens Legal Action, Disables 3 Accounts Over Zero-Day Exploit Disclosure
Updated
Updated · The Verge · May 30

Microsoft Threatens Legal Action, Disables 3 Accounts Over Zero-Day Exploit Disclosure

9 articles · Updated · The Verge · May 30
  • Microsoft threatened legal action against the figure known as Nightmare Eclipse and shut their GitHub, GitLab and Microsoft Security Response Center accounts over public zero-day exploit posts.
  • The company argues the disclosures bypassed its “proper coordination” process, effectively framing the case as a failure to follow responsible disclosure rules.
  • Security researcher Kevin Beaumont said the bans undercut any future responsible reporting, noting it is hard to coordinate disclosures after losing access to Microsoft’s reporting channels.
  • Beaumont also argued Microsoft’s stance could be difficult to defend because the company has hired researchers who published zero-days, including some with hacking convictions, and has bought exploits from brokers.
When a researcher goes rogue, is Microsoft's legal threat protecting users or just silencing its critics?
What does this feud reveal about the broken relationship between Big Tech and security researchers?

Related Stories

The VergeMay 30
RedditMay 30
thecybersignal.comMay 30
radix.azMay 30
XMay 30
NewsBytesMay 30
cryptonews.netMay 30
hyper.aiMay 30
siliconreport.comMay 29