
Microsoft Threatens Vuln Researchers; Shadow Brokers Revisited
From Three Buddy Problem by Security Conversations
May 30, 2026 · 1h 60m
About this episode
The episode discusses Microsoft's legal threats against vulnerability researchers and revisits the Shadow Brokers leak on its 10th anniversary.
( Presented by Ent.ai : Ent delivers intent-aware security that protects every action, adapts to every workflow, and works for every user. Enterprise threat detection, reimagined. ) Three Buddy Problem - Episode 99 : Microsoft is now threatening legal action against researchers who drop zero-days. We debate whether it's a fair line against extortion, or amateur-hour PR from a company that already torched its own research community? Costin plays reluctant defender, JAGS says the damage was done years ago, and Ryan reopens the long history of silent fixes and stolen bounties. Plus, on the 10th anniversary of the Shadow Brokers leak, we discuss some enduring mysteries, theories on attribution and an interesting trail that leads to Edward Snowden. We also unpack Rob Joyce's warning that China's cyber explosives are already planted in US infrastructure, and the Pope's warnings about around artificial intelligence. Cast: Juan Andres Guerrero-Saade , Ryan Naraine and Costin Raiu . Timestamps: 0:00 - Introductory banter 2:03 - The Pope's AI paper 3:35 - New sponsor: Brandon Dixon's Ent Security 9:34 - Costin's Chinese-model OSINT rabbit hole 13:34 - Codex, GPT-5.5, and the "American AI…
People in this episode
Host: Juan Andres Guerrero-Saade
Guests: Ryan Naraine, Costin Raiu
Topics covered
- vulnerability research
- cybersecurity
- legal threats
- Shadow Brokers
- artificial intelligence
- China's cyber threats
Keywords
- Microsoft
- vulnerability researchers
- Shadow Brokers
- cybersecurity
- artificial intelligence
- China
- Edward Snowden
- legal threats
Sponsors
Ent
Mentioned in this episode
Organizations: Microsoft, Shadow Brokers
More episodes of Three Buddy Problem
- Mythos, Fable, and Anthropic's Big Trust Problem · June 12, 2026 · 1h 59m
- Fast16, Fanny, and Stuxnet: Cyber Paleontology Redux · June 5, 2026 · 2h 24m
- Aaron Portnoy on Pwn2Own, the End of Easy Bugs, and AI-Fueled Offense · May 27, 2026 · 40 min
- Perri Adams on Proof Engines, LLMs, and the New Era of Verifiable Code · May 26, 2026 · 40 min
- Find 50,000 Bugs, Fix Zero: Gabriel Bernadett-Shapiro on the AI Vuln Trap · May 26, 2026 · 50 min
- Federico Kirschbaum on XBOW, AI Hackers, and the Future of Pen Testing · May 25, 2026 · 58 min
Explore listener stats, chart rankings, contacts and more on the Three Buddy Problem podcast page.