Cyber Security

Researcher drops two more Microsoft Defender zero-days, all three now exploited in the wild

Researcher drops two more Microsoft Defender zero-days, all three now exploited in the wild

The security researcher who earlier this month published a proof-of-concept (PoC) exploit for a zero-day privilege escalation vulnerability in Microsoft Defender is back with two more. The first, dubbed “RedSun,” is another privilege escalation flaw in the same platform. The second, “UnDefend,” allows a standard user to block Microsoft Defender from receiving signature updates or disable it entirely (if Microsoft pushes a major Defender update). And, according to Huntress researchers, all three exploitation techniques have … More

The post Researcher drops two more Microsoft Defender zero-days, all three now exploited in the wild appeared first on Help Net Security.

Read More

Related Posts

'Harmless' Global Adware Transforms Into an AV Killer

'Harmless' Global Adware Transforms Into an AV Killer

Apache ActiveMQ CVE-2026-34197 Added to CISA KEV Amid Active Exploitation

Apache ActiveMQ CVE-2026-34197 Added to CISA KEV Amid A...

Coast Guard's New Cybersecurity Rules Offers Lessons for CISOs

Coast Guard's New Cybersecurity Rules Offers Lessons fo...

North Korea Uses ClickFix to Target macOS Users' Data

North Korea Uses ClickFix to Target macOS Users' Data

Mozilla challenges enterprise AI providers with Thunderbolt, open-source AI client under your control

Mozilla challenges enterprise AI providers with Thunder...

New infosec products of the week: April 17, 2026

New infosec products of the week: April 17, 2026