RELATED:

In a , Microsoft blamed March's information leak in the Microsoft Active Protections Program (MAPP) that led to several threats against a Remote Desktop Protocol (RDP) vulnerability on Chinese partner company Hangzhou DPTech Technologies.

"During our investigation into the disclosure of confidential data shared with our Microsoft Active Protections Program (MAPP) partners, we determined that a member of the MAPP program, Hangzhou DPTech Technologies Co., Ltd., had breached our non-disclosure agreement (NDA)," Yunsun Wee, director of Microsoft Trustworthy Computing, wrote in the blog post. "Microsoft takes breaches of our NDAs very seriously and has removed this partner from the MAPP Program."

The breach, which came at the hands of hackers in China, granted the cybercrime community access to information to attack the RDP vulnerability before Microsoft customers were given the information needed to patch it. Wee added that Microsoft "took actions to better protect our information," while senior program manager Maarten Van Horenbeeck provided more visibility into the .

Given the relatively light load of security bulletins, Microsoft chose an opportune time to close the book on March's security scare. Three of the seven bulletins were rated critical, the most interesting of which was Bulletin 1's critical patch for Office, Qualys CTO Wolfgang Kandek says.