I’ve seen a few threads relating to YellowKey / GreenPlasma / RedSun etc. Most of the discourse seems to be focused around the disclosure itself, and Nightmare-Eclipse / deadeclipse666 / Terran Republic’s motives.
Things from the source that didn't get discussed:
- The big surprise in store for MS, for next Patch Tuesday.
- The dead man's switch in place
- RCE drops promised in subsequent Patch Tuesday cycles
The campaign has been following a pretty clear trajectory, and thus far all promises have been followed through.
As a former bored teen, who went after similar sized companies (and was eventually caught), I’d say you’ve already got your answer - boredom, being a tad neurotypical helps too.
Most of the things I pulled could have been prevented if everything was checked against the OWASP top 10.
Then the other multiplier is how old the company is, at a certain stage there’s a digital footprint that isn’t properly documented internally.
Things from the source that didn't get discussed:
- The big surprise in store for MS, for next Patch Tuesday.
- The dead man's switch in place
- RCE drops promised in subsequent Patch Tuesday cycles
The campaign has been following a pretty clear trajectory, and thus far all promises have been followed through.
What's in store for June 9?