Microsoft drew criticism after warning of possible legal action and law-enforcement referrals against a security researcher using the handle “Nightmare Eclipse,” who publicly disclosed unpatched vulnerabilities and exploit code affecting Microsoft products, including Windows Defender and BitLocker. Microsoft said the researcher had not privately reported the bugs before publication, a process the company described as “responsible” disclosure, and argued the public release could help malicious...

Read the original article