Microsoft and security researcher Nightmare Eclipse are in a public fight over how security flaws should be handled. Over recent weeks, Nightmare Eclipse posted working exploit code online for several serious Windows bugs before Microsoft released fixes. The flaws affect major Windows security features like Microsoft Defender and BitLocker. The researcher says they first reported the problems privately but claims Microsoft ignored the reports, delayed responses, and shut down their bug reporting account. They then published the details and proof-of-concept code publicly. On May 27, Microsoft responded in a blog post, saying that releasing exploit code before patches are ready puts users at risk because attackers can immediately use it. Microsoft also warned it would continue legal action against those enabling cybercrime like Eclipse Nightmare Eclipse argues they went public because of slow fixes and poor treatment from Microsoft in the past.