Microsoft threatens researcher after disclosure of Defender and BitLocker vulnerabilities

Colleagues, an update from cybersecurity: Microsoft allegedly threatened a researcher after disclosure of unpatched flaws in Defender and BitLocker.
- Nightmare Eclipse published PoCs for BlueHammer, RedSun UnDefend, and YellowKey; Microsoft and CISA say some were weaponized.
- The researcher says access to MSRC was revoked; materials were posted to GitHub/GitLab and accounts suspended.
- Microsoft referenced its Digital Crimes Unit and issued warnings; the community fears a chilling effect on vulnerability reporting.
Why it matters: trust between researchers and vendors is essential for security.
Do threats address the problem or only deter researchers?
#cybersecurity #vulnerability #bugbounty #Microsoft


Latest comments
No comments yet.