From a systems admin standpoint I love this. Right now I have to make sure I re-run activation scripts on my machines every 30 days to make sure they are kept up to date on tokens. As far as exploitation or manipulation like they did with the KMS I don't think it would be possible without setting up your own domain and hacking the hell out of AD. Like it reports the object is bound to the domain so you would have to manipulate windows on the DLL level or find a way to do a man in the middle attack and intercept the request and report back whatever it is looking for. Time is on our side, and I have yet to see a program that is used by the masses not get cracked.