Search
Microsoft has recently come under fire for its approach to managing zero-day vulnerabilities. Security researcher Nightmare Eclipse, who asserts having previously been employed by Microsoft, has publicly shared exploit codes for several Windows zero-day vulnerabilities that impact critical components like Defender and BitLocker. Eclipse has criticized Microsoft for not awarding bug bounties, refusing to engage in dialogue, and retaliating by banning their GitHub account. Up to this point, the researcher has unveiled six vulnerabilities, some of which have already been exploited maliciously, and has threatened to release additional details on July 14. In response, Microsoft has accused Eclipse of breaching the principles of coordinated vulnerability disclosure, intensifying the ongoing dispute between the two sides.
-
C114 Communication Network -
Communication Home
