Microsoft reaches for olive branch after public dustup with 0-day researcher
Microsoft has softened its stance towards security researchers following backlash over its previous threats of legal action. The company stated it has no intention to pursue action against individuals conducting security research, a shift from its earlier position. This change comes after a public dispute with a researcher who disclosed multiple Windows vulnerabilities, raising concerns about how vendors engage with the security community.
- ▪Microsoft faced criticism from the security community after threatening legal action against a researcher who disclosed Windows zero-days.
- ▪In a recent statement, Microsoft clarified that it does not intend to pursue action against individuals conducting or publishing security research.
- ▪The company's earlier rhetoric was seen as potentially creating a chilling effect on vulnerability research.
Opening excerpt (first ~120 words) tap to expand
(function() { let windowUrl = window.location.href; windowUrl = windowUrl.substring(windowUrl.indexOf('?') + 1); let messageElement = document.querySelector('.shareableMessage'); if (windowUrl && windowUrl.includes('code') && windowUrl.includes('expires')) { messageElement.style.display = 'block'; } })(); Security Microsoft reaches for olive branch after public dustup with 0-day researcher Following days of criticism from the security community, Redmond dials back rhetoric, insists vulnerability hunters not in its legal crosshairs Carly Page Carly Page Published tue 2 Jun 2026 // 13:37 UTC Microsoft has moved to calm an increasingly noisy backlash from the security community after appearing to threaten legal action against a researcher who spent the past several weeks dumping Windows…
Excerpt limited to ~120 words for fair-use compliance. The full article is at theregister.
Discussion
0 commentsMore from theregister
