Chinese firm Hangzhou DPtech leaked Microsoft RDP exploit code
Microsoft has blamed a Chinese security firm for leaking Remote Desktop Protocol (RDP) exploit code that was patched in March.
Hangzhou DPTech Technologies Co, a specialist in firewalls and intrusion prevention systems, breached its non-disclosure contract with the Microsoft Active Protections Program (MAPP) by releasing the code. It was booted from Microsoft's vulnerability-sharing program last week.
Under MAPP, Microsoft shares vulnerability details with approved software security providers prior to its monthly fixes being released to allow security firms to immediately protect their customers once the patches are delivered. Specifically MAPP provides its partners with a comprehensive explanation of the vulnerability, a blueprint to trigger the flaw, information on how to detect the bug and a proof-of-concept file.