A security researcher was banned from GitHub after publishing zero-day Windows exploit code on the platform, reportedly in retaliation for grievances against Microsoft. The researcher claims Microsoft's actions ruined their life, and at least one security expert has characterized the GitHub account ban as vindictive. The researcher has threatened further retaliatory action, specifying a date of July 14. The incident highlights the use of GitHub as a vehicle for publishing unpatched, live exploit code targeting Windows systems, and raises concerns about the potential for continued weaponized disclosures. GitHub's enforcement action removed the content, but the underlying zero-days and the researcher's stated intent to continue warrant monitoring.
- Microsoft's GitHub bans security researcher who posted zero-day (opens in a new tab)
- GitLab Suspends Windows Exploit Researcher Nightmare-Eclipse Aft(opens in a new tab)
- "I have proof for every single word": This security researcher's(opens in a new tab)
- Microsoft under fire for threatening security researcher with cr(opens in a new tab)
- Microsoft threatened a security researcher with criminal prosecu(opens in a new tab)
- This Week In Security: Ubiquiti Fixes, And FreeBSD Joins The Clu(opens in a new tab)