EVERYONE GETS AN LPE
Windows:
#BlueHammer (#CVE_2026_33825)
#RedSun (#CVE_2026_41091)
#UnDefend (#CVE_2026_45498)
#WindowsInstaller (#CVE_2026_27910):
Linux:
#CopyFail (#CVE_2026_31431)
#SSHKeysignPwn (#CVE_2026_46333)
FreeBSD:
#FatGid (#CVE_2026_45250)
#ExecveBug (#CVE_2026_7270)
We'll install MS Defender on your VMs, they said.
It will make them more secure, they said.
#infosec #Defender #MicrosoftDefender
#RedSun #BlueHammer #UnDefend
-Zero-Days #RedSun, #UnDefend und #BlueHammer werden attackiert | Security https://www.heise.de/news/Ungepatchte-Windows-Zero-Days-RedSun-UnDefend-und-BlueHammer-werden-attackiert-11263691.html #exploit #ZeroDay #0dayUnDefend: noch ein ZeroDay-PoC von Chaotic Eclipse/Nightmare‑Eclipse. Und das war bestimmt noch nicht alles.
Mehr: https://maniabel.work/archiv/1462
#ChaoticEclipse #NightmareEclipse #PoC #UnDefend #Windows #ZeroDay #infosec #up2date
Chaotic Eclipse dropped a third Defender zero-day today. No admin required.
Four independent locking mechanisms block all signature updates. The one they withheld: a way to lie to the EDR console so the dashboard shows green while signatures go stale.
The sync provider name changed from "SERIOUSLYMSFT" (RedSun) to "IHATEMICROSOFT" (BlueHammer). UnDefend drops the Cloud Files trick entirely — just file locks. Standard user.
BlueHammer patched Tuesday. RedSun unpatched. UnDefend no CVE.
Line-by-line: https://nefariousplan.com/posts/undefend/
Hacker Memes
clacke: exhausted pixie dream boy 🇸🇪🇭🇰💙💛
Marcel SIneM(S)US
maniabel
kevlar_sec