> TritonInfoSec News
Home / Apr 24, 2026 / Story
0
#8 BleepingComputer general April 23, 2026 at 11:05 UTC

CISA orders feds to patch BlueHammer flaw exploited as zero-day

By Sergiu Gatlan

AI Summary

CISA ordered federal agencies to patch a Microsoft Defender privilege escalation vulnerability dubbed BlueHammer that was exploited as a zero-day, allowing attackers to access the SAM database and extract NTLM hashes for System privileges. The exploitation demonstrates how security tools themselves can become attack vectors when compromised.

Read full article → https://www.bleepingcomputer.com/news/security/cis…

Relevance score: 78.0/100

# More from April 24

  1. 1
    CISA: US agency breached through Cisco vulnerability, FIRESTARTER backdoor allowed access through March The Record
  2. 2
    Bitwarden CLI npm package compromised to steal developer credentials BleepingComputer
  3. 3
    New Checkmarx supply-chain breach affects KICS analysis tool BleepingComputer
  4. 4
    UNC6692 Impersonates IT Helpdesk via Microsoft Teams to Deploy SNOW Malware The Hacker News
  5. 5
    UK warns of Chinese hackers using proxy networks to evade detection BleepingComputer
  6. 6
    New GopherWhisper APT group abuses Outlook, Slack, Discord for comms BleepingComputer
  7. 7
    Apple Patches iOS Flaw That Stored Deleted Signal Notifications in FBI Forensic Case The Hacker News
  8. 9
    Hackers exploit file upload bug in Breeze Cache WordPress plugin BleepingComputer
  9. 10
    US, UK agencies warn hackers were hiding on Cisco firewalls long after patches were applied CyberScoop