> repositories that were once public but later made private

Or maybe the post needs a better title

I suppose they could sue themselves for accidentally making their own private data public.

Or the wronged parties were those who entrusted someone else not to put their data (e.g., closed software, NDA material, proprietary internal info shared with contractor, access control secrets) in a public repo.

Who's got better lawyers than Microsoft? lol

CrowdStrike?