Microsoft is threatening legal action for disclosing exploits

Microsoft plans to file a criminal case against Nightmare Eclipse for public disclosure of zero-day exploits. The individual, identified as Nightmare Eclipse, posted proof-of-concept code suggesting former employee status. Microsoft disabled Nightmare Eclipse's GitHub, GitLab, and Microsoft Security Response accounts. The company claims the disclosure violated proper coordination protocols. The legal action targets the public release of exploit code without prior notification. This move raises concerns about transparency and accountability in vulnerability disclosure.