cross-posted from: https://piefed.world/c/tech/p/1246200/pdf-a-hacker-s-arrest-reveals-microsoft-can-track-users-ip-history-even-with-vpn-full-we
You can read about it yourself here on page 12 (or page 8 of affidavit), then page 33 and down (page 29 of affidavit)
First one to notice this: Security researcher, VX-Underground.


Pretty sure it’s been established that VMs can be fingerprinted based off the host machine.
Depends on how it’s done; using Hyper-V, definitely.
Using QEMU? The network traffic will all be linked back against the QEMU UUID, but that’s it. Disposable QEMU image via TOR? It gets harder to track back.