> TritonInfoSec News
Home / Apr 18, 2026 / Story
0
#1 The Hacker News general April 17, 2026 at 13:21 UTC

Three Microsoft Defender Zero-Days Actively Exploited; Two Still Unpatched

By [email protected] (The Hacker News)

AI Summary

Huntress reports active exploitation of three Microsoft Defender zero-day vulnerabilities (BlueHammer, RedSun, and UnDefend) that allow attackers to gain SYSTEM or elevated administrator privileges. Two of these flaws remain unpatched, creating immediate risk for organizations using Windows Defender across enterprise environments.

Read full article → https://thehackernews.com/2026/04/three-microsoft-…

Relevance score: 95.0/100

# More from April 18

  1. 2
    CISA flags Apache ActiveMQ flaw as actively exploited in attacks BleepingComputer
  2. 3
    Payouts King ransomware uses QEMU VMs to bypass endpoint security BleepingComputer
  3. 4
    Recently leaked Windows zero-days now exploited in attacks BleepingComputer
  4. 5
    Operation PowerOFF Seizes 53 DDoS Domains, Exposes 3 Million Criminal Accounts The Hacker News
  5. 6
    Ukraine confirms suspected APT28 campaign targeting prosecutors, anti-corruption agencies The Record
  6. 7
    Grinex exchange blames "Western intelligence" for $13.7M crypto hack BleepingComputer
  7. 8
    Cisco says critical Webex Services flaw requires customer action BleepingComputer
  8. 9
    US nationals behind DPRK IT worker 'laptop farm' sent to prison BleepingComputer
  9. 10
    NIST Limits CVE Enrichment After 263% Surge in Vulnerability Submissions The Hacker News