Meine Güte, Microsoft benimmt sich nun total daneben und ich hoffe nun dass deswegen viele Firmen nun endlich auf Linux & *BSD so wie weitere Open-Source Software wechseln und nicht denen blind gehorchen.

«Sechs Zero-Days in sechs Wochen offengelegt: Microsoft reagiert mit Drohung»
🤨 https://www.heise.de/news/Zu-viele-Zero-Days-Microsoft-droht-mit-Gericht-11310723.html

«Niederlande: Microsoft gibt Daten unliebsamer Beamter an USA weiter»
🤨 https://winfuture.de/news,159002.html

#microsoft #niederlande #itsicherheit #it #zeroday #usa #software #opensource

Aua, Microsoft. Das tut weh. 😬 Sechs Zero-Day-Lücken in nur sechs Wochen öffentlich gemacht und kein Patch in Sicht. Statt sich an den eigenen Code zu setzen, holt der Konzern jetzt lieber schon mal die Anwälte aus der Schublade.

Zum Artikel: https://heise.de/-11310723?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

#microsoft #zeroday #windows #itsicherheit #cybersecurity

🛡️ Il vantaggio della difesa svanisce: scovare zero-day a 50$ al giorno cambia le regole della sicurezza. Serve ripensare prevenzione e risposta. #Cybersecurity #ZeroDay

🔗 https://www.tomshw.it/business/vantaggio-difesa-crollato-zero-day-ai-sp

Microsoft Faces Backlash Over Zero-Day Disclosure Feud

A researcher known as Nightmare Eclipse has unleashed a series of six Windows zero-day vulnerabilities, with working exploit code for at least three, and has threatened to release another on July 14, sparking a public feud with Microsoft. The ominous warning, which has left Microsoft speaking out against uncoordinated disclosures, has…

https://osintsights.com/microsoft-faces-backlash-over-zero-day-disclosure-feud?utm_source=mastodon&utm_medium=social

#ZeroDay #Windows #Microsoft #NightmareEclipse #VulnerabilityDisclosure

 Microsoft 0-day feud escalates as researcher threatens another Windows exploit dump

｢ Nightmare also noted that “Microsoft still has chains in my hands,” preventing them from releasing “documents” yet, or anytime in June, and then warned: “Mark this date July 14th, I will make sure your bones are shattered that day.” ｣

https://www.theregister.com/security/2026/05/28/microsoft-0-day-feud-escalates-as-researcher-threatens-another-windows-exploit-dump/5248085

#zeroday #cybersecurity #microsoft

So, with all the fuss going on, Microsoft posted this justification yesterday:

"The vulnerabilities known as RedSun, UnDefend, BlueHammer, YellowKey, GreenPlasma, and MiniPlasma were not responsibly disclosed. In response to the unnecessary risk created by these disclosures, our security teams have been working around the clock to understand the impact, protect our customers, and develop security updates."

Microsoft: A shared responsibility: Protecting customers through Coordinated Vulnerability Disclosure https://www.microsoft.com/en-us/msrc/blog/2026/05/a-shared-responsibility-protecting-customers-through-coordinated-vulnerability-disclosure

More:

Infosecurity-Magazine: Microsoft Condemns "Uncoordinated" Zero Day Disclosures https://www.infosecurity-magazine.com/news/microsoft-uncoordinated-zeroday/ 3infosec #Microsoft #zeroday

⏳ From hours to seconds. That's the difference an SBOM-powered inventory can make during a zero-day incident. Our expert webinar explores how a single query could save you from panic.

See the power of an automated query in our webinar. Watch it now: https://go.anchore.com/rapid-incident-response-with-sboms/ #Cybersecurity #AppSec #ZeroDay

Gogs Zero-Day Flaw Enables Remote Code Execution on Exposed Servers

A zero-day flaw in Gogs, a self-hosted Git service, leaves exposed servers vulnerable to remote code execution - and it's surprisingly easy for attackers to exploit, as they can create an account and repository on default-configured instances. This critical-severity vulnerability affects the latest release versions and…

https://osintsights.com/gogs-zero-day-flaw-enables-remote-code-execution-on-exposed-servers?utm_source=mastodon&utm_medium=social

#Gogs #ZeroDay #RemoteCodeExecution #ArgumentinjectionFlaw #SelfhostedGitService

Microsoft Opposes Public Zero-Day Disclosures, Cites Customer Risk

Microsoft is speaking out against public zero-day disclosures, warning that revealing vulnerabilities without prior notice can put customers at unnecessary risk. The tech giant is urging researchers to adopt Coordinated Vulnerability Disclosure, sharing findings with affected vendors before going public.

https://osintsights.com/microsoft-opposes-public-zero-day-disclosures-cites-customer-risk?utm_source=mastodon&utm_medium=social

#CoordinatedVulnerabilityDisclosure #ZeroDay #Cve202633825 #Microsoft #Windows