Mystery Microsoft bug leaker keeps the zero-days coming

A recurring anonymous researcher has published multiple Windows zero‑day disclosures—most recently YellowKey (alleged BitLocker bypass requiring physical access) and GreenPlasma (privilege escalation)—with partial exploit code released for some issues; prior leaked PoCs (RedSun, UnDefend) were reportedly adopted in the wild, prompting warnings about increased risk to stolen devices and post‑exploit escalation, and calls to apply mitigations and patches when available.