Updated
Updated · Yahoo · Jun 2
Microsoft Drops Legal Threat Over Windows 11 BitLocker Zero-Day as Backlash Hits CVD Stance
Updated
Updated · Yahoo · Jun 2

Microsoft Drops Legal Threat Over Windows 11 BitLocker Zero-Day as Backlash Hits CVD Stance

3 articles · Updated · Yahoo · Jun 2
  • Microsoft said June 1 it has no intention of pursuing action against people conducting or publishing security research, reversing an earlier threat tied to the YellowKey disclosure.
  • The retreat followed backlash after the company warned that publishing unpatched bugs and proof-of-concept code could endanger customers and invite law-enforcement action.
  • YellowKey, tracked as CVE-2026-45585, let a researcher known as Chaotic Eclipse bypass BitLocker protection on Windows 11 with a simple USB key; Microsoft said the flaw had not been shared in advance under its disclosure policy.
  • Security researchers said the legal threat risked undermining Microsoft's research-friendly image, raising broader questions about whether the clash could chill future vulnerability reporting.
Sources
Center100%
Yahoo6h ago
Microsoft Reverses Legal Action Stance Against Security Researchers
rescana.com19h ago
Active Exploitation Alert: Microsoft Windows and Defender Zero-Day Vulnerabilities Trigger Global Backlash Amid Legal Threats to Security Researchers – Rescana
threataft.com19h ago
Microsoft Zero-Day Legal Threats Spark Researcher Backlash | ThreatAft
4 Sources
Microsoft threatened a researcher, then backed down. Has the power dynamic between hackers and corporations permanently shifted?
A USB key can defeat Windows BitLocker. With hackers using this exploit, is any encrypted data truly safe?
A researcher promises a new zero-day ‘surprise’ this month. What happens when vulnerability disclosure becomes a weapon?

Related Stories

Microsoft Condemns 6 Windows Flaws Disclosure as Researcher Alleges It "Ruined" His Life
2d ago
Microsoft Condemns 6 Zero-Day Disclosures as 90-Day Bug-Reporting Rule Faces Pressure
4d ago
Nightmare-Eclipse Threatens Microsoft on July 14 After 2 Code Platforms Ban Zero-Day Exploits
5d ago
Sources4 total
Center100%
Yahoo6h ago
Microsoft Reverses Legal Action Stance Against Security Researchers
rescana.com19h ago
Active Exploitation Alert: Microsoft Windows and Defender Zero-Day Vulnerabilities Trigger Global Backlash Amid Legal Threats to Security Researchers – Rescana
threataft.com19h ago
Microsoft Zero-Day Legal Threats Spark Researcher Backlash | ThreatAft
Show all 4 sources

Related Stories

Microsoft Condemns 6 Windows Flaws Disclosure as Researcher Alleges It "Ruined" His Life
2d ago
Microsoft Condemns 6 Zero-Day Disclosures as 90-Day Bug-Reporting Rule Faces Pressure
4d ago
Nightmare-Eclipse Threatens Microsoft on July 14 After 2 Code Platforms Ban Zero-Day Exploits
5d ago