US Edition
Defender’s Own Weapons: How Zero-Day Flaws Turn Microsoft’s Antivirus Against Windows Users
This story is only covered by news sources that have yet to be evaluated by the independent media monitoring agencies we use to assess the quality and reliability of news outlets on our platform. Learn more here.2 Articles
2 Articles
Defender’s Own Weapons: How Zero-Day Flaws Turn Microsoft’s Antivirus Against Windows Users
Attackers have turned Microsoft Defender into their ultimate inside job. Three zero-day vulnerabilities—BlueHammer, RedSun, and UnDefend—let ordinary users seize SYSTEM privileges or cripple the antivirus entirely. Security firm Huntress spotted the first real-world hits on April 10, with all three exploits chaining together in intrusions tied to compromised FortiGate SSL VPNs. BlueHammer grabbed CVE-2026-33825 and a patch in April’s Patch Tuesd…
A researcher named "Chaotic Eclipse" published a Proof-of-Concept (PoC) for the Microsoft Defender-Zero-Day on April 16, 2026. The dangerous information is said to be a targeted protest against the Microsoft Security Response Center (MSRC). His accusation: Microsoft ignored his work and destroyed it financially as well as professionally. The publication of the "RedSun-Exploit is not a classic leak, but a targeted act of protest. Security researc…
Coverage Details
Bias Distribution
- There is no tracked Bias information for the sources covering this story.
Factuality
To view factuality data please Upgrade to Premium
