home.social

#bluehammer — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #bluehammer, aggregated by home.social.

  1. EVERYONE GETS AN LPE

    Windows:
    #BlueHammer (#CVE_2026_33825)
    #RedSun (#CVE_2026_41091)
    #UnDefend (#CVE_2026_45498)
    #WindowsInstaller (#CVE_2026_27910):

    Linux:
    #CopyFail (#CVE_2026_31431)
    #SSHKeysignPwn (#CVE_2026_46333)

    FreeBSD:
    #FatGid (#CVE_2026_45250)
    #ExecveBug (#CVE_2026_7270)

  2. EVERYONE GETS AN LPE

    Windows:
    #BlueHammer (#CVE_2026_33825)
    #RedSun (#CVE_2026_41091)
    #UnDefend (#CVE_2026_45498)
    #WindowsInstaller (#CVE_2026_27910):

    Linux:
    #CopyFail (#CVE_2026_31431)
    #SSHKeysignPwn (#CVE_2026_46333)

    FreeBSD:
    #FatGid (#CVE_2026_45250)
    #ExecveBug (#CVE_2026_7270)

  3. EVERYONE GETS AN LPE

    Windows:
    #BlueHammer (#CVE_2026_33825)
    #RedSun (#CVE_2026_41091)
    #UnDefend (#CVE_2026_45498)
    #WindowsInstaller (#CVE_2026_27910):

    Linux:
    #CopyFail (#CVE_2026_31431)
    #SSHKeysignPwn (#CVE_2026_46333)

    FreeBSD:
    #FatGid (#CVE_2026_45250)
    #ExecveBug (#CVE_2026_7270)

  4. EVERYONE GETS AN LPE

    Windows:
    #BlueHammer (#CVE_2026_33825)
    #RedSun (#CVE_2026_41091)
    #UnDefend (#CVE_2026_45498)
    #WindowsInstaller (#CVE_2026_27910):

    Linux:
    #CopyFail (#CVE_2026_31431)
    #SSHKeysignPwn (#CVE_2026_46333)

    FreeBSD:
    #FatGid (#CVE_2026_45250)
    #ExecveBug (#CVE_2026_7270)

  5. EVERYONE GETS AN LPE

    Windows:
    #BlueHammer (#CVE_2026_33825)
    #RedSun (#CVE_2026_41091)
    #UnDefend (#CVE_2026_45498)
    #WindowsInstaller (#CVE_2026_27910):

    Linux:
    #CopyFail (#CVE_2026_31431)
    #SSHKeysignPwn (#CVE_2026_46333)

    FreeBSD:
    #FatGid (#CVE_2026_45250)
    #ExecveBug (#CVE_2026_7270)

  6. Microsoft Windows Alert—Angry Hacker Drops 2 New Zero-Day Exploits

    Angry hacker drops more Windows 0-Days in ongoing campaign. NurPhoto via Getty Images Updated May 14: This article,…
    #NewsBeep #News #Technology #AngryHacker #AU #Australia #BlueHammer #ChaoticEclipse #GreenPlasma #NightmareEclpise #Windows #Windows0-Dayexploit #Windowssecurityalert #windowswarning #YellowKey
    newsbeep.com/au/670697/

  7. Microsoft Windows Alert—Angry Hacker Drops 2 New Zero-Day Exploits

    Angry hacker drops more Windows 0-Days in ongoing campaign. NurPhoto via Getty Images The day following the Microsoft…
    #NewsBeep #News #Technology #AngryHacker #AU #Australia #BlueHammer #ChaoticEclipse #GreenPlasma #NightmareEclpise #Windows #Windows0-Dayexploit #Windowssecurityalert #windowswarning #YellowKey
    newsbeep.com/au/668502/

  8. #BlueHammer wurde zum 14. April 2026 als Defender Schwachstelle gepatcht. Hier meine Nachlese samt Link auf eine Fortra-Analyse.

    borncity.com/blog/2026/04/16/b

  9. It should've been a known fact that you should never ever piss off a hacker with anime profile pic.

    I don't know what is inside Microsoft mind.

    Context: A hacker accused Microsoft breached an agreement with them, in retaliation the hacker drop 2 zero days on Microsoft Defender

    youtube.com/watch?v=Q0pKjLMOvFE

    #cybersecurity #infosec #hacking #zeroday #microsoft #defender #windowsdefender #antivirus #redsun #bluehammer

  10. It should've been a known fact that you should never ever piss off a hacker with anime profile pic.

    I don't know what is inside Microsoft mind.

    Context: A hacker accused Microsoft breached an agreement with them, in retaliation the hacker drop 2 zero days on Microsoft Defender

    youtube.com/watch?v=Q0pKjLMOvFE

    #cybersecurity #infosec #hacking #zeroday #microsoft #defender #windowsdefender #antivirus #redsun #bluehammer

  11. Pissing off a hacker is never a good idea. The #BlueHammer researcher has dropped another one, abusing Microsoft Defender's dorky behaviour to gain NT Authority privileges.
    github.com/Nightmare-Eclipse/R
    #Security #Microsoft #Windows #RedSun

  12. Pissing off a hacker is never a good idea. The #BlueHammer researcher has dropped another one, abusing Microsoft Defender's dorky behaviour to gain NT Authority privileges.
    github.com/Nightmare-Eclipse/R
    #Security #Microsoft #Windows #RedSun

  13. Pissing off a hacker is never a good idea. The #BlueHammer researcher has dropped another one, abusing Microsoft Defender's dorky behaviour to gain NT Authority privileges.
    github.com/Nightmare-Eclipse/R
    #Security #Microsoft #Windows #RedSun

  14. Pissing off a hacker is never a good idea. The #BlueHammer researcher has dropped another one, abusing Microsoft Defender's dorky behaviour to gain NT Authority privileges.
    github.com/Nightmare-Eclipse/R
    #Security #Microsoft #Windows #RedSun

  15. Pissing off a hacker is never a good idea. The #BlueHammer researcher has dropped another one, abusing Microsoft Defender's dorky behaviour to gain NT Authority privileges.
    github.com/Nightmare-Eclipse/R
    #Security #Microsoft #Windows #RedSun

  16. Fully exploitable Windows Defender vulnerability with full source code public for >8 days no CVE assigned so far (BlueHammer).

    Writeup: hackingpassion.com/bluehammer-

    Full source code: github.com/Nightmare-Eclipse/B

    /cc @bsi Was ist eigentlich der "Prozess" für vollständig öffentliche Lücken zu denen es seit über einer Woche noch nicht einmal eine CVE Nummer gibt?

    Edit: Patch and CVE number CVE-2026-33825 available by now. Took 6 days though.

    #infosec #itsec #Microsoft #WindowsDefender #BlueHammer

  17. Fully exploitable Windows Defender vulnerability with full source code public for >8 days no CVE assigned so far (BlueHammer).

    Writeup: hackingpassion.com/bluehammer-

    Full source code: github.com/Nightmare-Eclipse/B

    /cc @bsi Was ist eigentlich der "Prozess" für vollständig öffentliche Lücken zu denen es seit über einer Woche noch nicht einmal eine CVE Nummer gibt?

    Edit: Patch and CVE number CVE-2026-33825 available by now. Took 6 days though.

    #infosec #itsec #Microsoft #WindowsDefender #BlueHammer

  18. Fully exploitable Windows Defender vulnerability with full source code public for >8 days no CVE assigned so far (BlueHammer).

    Writeup: hackingpassion.com/bluehammer-

    Full source code: github.com/Nightmare-Eclipse/B

    /cc @bsi Was ist eigentlich der "Prozess" für vollständig öffentliche Lücken zu denen es seit über einer Woche noch nicht einmal eine CVE Nummer gibt?

    Edit: Patch and CVE number CVE-2026-33825 available by now. Took 6 days though.

    #infosec #itsec #Microsoft #WindowsDefender #BlueHammer

  19. Fully exploitable Windows Defender vulnerability with full source code public for >8 days no CVE assigned so far (BlueHammer).

    Writeup: hackingpassion.com/bluehammer-

    Full source code: github.com/Nightmare-Eclipse/B

    /cc @bsi Was ist eigentlich der "Prozess" für vollständig öffentliche Lücken zu denen es seit über einer Woche noch nicht einmal eine CVE Nummer gibt?

    #infosec #itsec #Microsoft #WindowsDefender #BlueHammer

  20. Fully exploitable Windows Defender vulnerability with full source code public for >8 days no CVE assigned so far (BlueHammer).

    Writeup: hackingpassion.com/bluehammer-

    Full source code: github.com/Nightmare-Eclipse/B

    /cc @bsi Was ist eigentlich der "Prozess" für vollständig öffentliche Lücken zu denen es seit über einer Woche noch nicht einmal eine CVE Nummer gibt?

    Edit: Patch and CVE number CVE-2026-33825 available by now. Took 6 days though.

    #infosec #itsec #Microsoft #WindowsDefender #BlueHammer

  21. Recently this popped up, #Bluehammer a #Windows exploit that exploits Windows Defender for a local privilege elevation

    From user to system level..

    It triggers a Defender scan and locks that after, so it can access a certain database that is been backed up while Defender scans to gain system level access

    GitHub now gives a warning for the repo it seems:
    github.com/Nightmare-Eclipse/B

    Just be careful