A group going by the name “Microsoft-Spurned Researcher Collective” – a play on the name of the Microsoft Security Response Center – published information last week about a vulnerability affecting Windows Vista and Windows Server 2008 that can be used to crash vulnerable machines.
“Due to hostility toward security researchers, the most recent example being of Tavis Ormandy, a number of us from the industry (and some not from the industry) have come together to form MSRC: the Microsoft-Spurned Researcher Collective,” the group said in a post to the Full Disclosure list. “MSRC will fully disclose vulnerability information discovered in our free time, free from retaliation against us or any inferred employer.”
To read the original eWeek article, click here: Microsoft Investigating Windows Security Vulnerability as Disclosure Debate Continues