Microsoft's GitHub bans security researcher who posted zero-day Windows exploits because company 'ruined their life' — expert claims action is vindictive and promises further retaliation
Submitted 3 weeks ago by floofloof@lemmy.ca to cybersecurity@infosec.pub
Bluegrass_Addict@lemmy.ca 3 weeks ago
stop… helping…microsoft…
why anyone would trust these companies to pay out, and why anyone would help them fix their problems at this point is beyond me. let them sink and burn.
Telorand@reddthat.com 3 weeks ago
AFAIK, they historically have
They’re not “helping,” they’re trying to get paid by finding exploits legally, rather than using them illegally. And if someone is particularly good, it can be lucrative work. It’s historically been a mutually beneficial arrangement, so it’s ironic if M$lop thinks they can cut out human researchers (ostensibly swapping them for AI agents) and still maintain a secure codebase.
To me, this is M$lop trying to cut costs from the wrong thing; may they get what they deserve.
grey_maniac@lemmy.ca 3 weeks ago
ETA? In my life experience that means estimated time to arrival. What do you mean in this context?
redsand@infosec.pub 3 weeks ago
Selling exploits is more of a legal gray area depending on jurisdiction and licensing.
4am@lemmy.zip 3 weeks ago
Isn’t this guy trying to make Microsoft look bad?
lurch@sh.itjust.works 3 weeks ago
idk from my perspective he’s trying to show them how they really are. beauty is in the eye of the beholder