Microsoft's GitHub bans security researcher who posted zero-day Windows exploits because company 'ruined their life' — expert claims action is vindictive and promises further retaliation
Submitted 4 days ago by floofloof@lemmy.ca to cybersecurity@infosec.pub
Bluegrass_Addict@lemmy.ca 3 days ago
stop… helping…microsoft…
why anyone would trust these companies to pay out, and why anyone would help them fix their problems at this point is beyond me. let them sink and burn.
Telorand@reddthat.com 3 days ago
AFAIK, they historically have
They’re not “helping,” they’re trying to get paid by finding exploits legally, rather than using them illegally. And if someone is particularly good, it can be lucrative work. It’s historically been a mutually beneficial arrangement, so it’s ironic if M$lop thinks they can cut out human researchers (ostensibly swapping them for AI agents) and still maintain a secure codebase.
To me, this is M$lop trying to cut costs from the wrong thing; may they get what they deserve.
grey_maniac@lemmy.ca 3 days ago
ETA? In my life experience that means estimated time to arrival. What do you mean in this context?
redsand@infosec.pub 3 days ago
Selling exploits is more of a legal gray area depending on jurisdiction and licensing.
4am@lemmy.zip 3 days ago
Isn’t this guy trying to make Microsoft look bad?
lurch@sh.itjust.works 3 days ago
idk from my perspective he’s trying to show them how they really are. beauty is in the eye of the beholder