All Topics
All Topics
Technology
Technology
AI
AI
Business
Business
Entertainment
Entertainment
News
News
Programming
Programming
Security
Security
Science
Science
Design
Design
Environment
Environment
Finance
Finance
Crypto
Crypto
Politics
Politics
Sports
Sports
Education
Education
Gaming
Gaming
Art
Art
Music
Music
Health
Health
Books
Books
Food
Food
Travel
Travel
Personal
Personal
Bluesky
Twitter

Researcher discloses RoguePlanet zero-day vulnerability targeting Microsoft Defender on fully patched Windows systems

By

Jessica Lyons

25d ago· 4 min readenNews

Summary

Security researcher Nightmare Eclipse, a prolific bug hunter and possibly disgruntled ex-Microsoft employee, disclosed a new zero-day vulnerability called RoguePlanet targeting Microsoft Defender. The disclosure came just hours after Microsoft's June Patch Tuesday release, which set a record for the number of CVEs and fixes. The vulnerability affects fully patched Windows 10 and Windows 11 systems, and the researcher released proof-of-concept exploit code alongside the disclosure, apparently motivated by grievances against Microsoft.

Source

bskyResearcher discloses RoguePlanet zero-day vulnerability targeting Microsoft Defender on fully patched Windows systemstheregister.com

Key quotes

· 3 pulled
They are angry at Redmond and will have their revenge.
Nightmare Eclipse, the prolific bug hunter and possibly disgruntled ex-Microsoft employee, disclosed another zero-day vulnerability just hours after Redmond issued a record-breaking number of CVEs and fixes for June Patch Tuesday.
The latest zero-day, RoguePlanet, targets Microsoft Defender and works against fully patched Windows 10 and Windows 11 systems, according to the researcher, who also released proof-of-concept exploit code for the security flaw.
Snippet from the RSS feed
Revenge is a dish best served code

You might also wanna read

Microsoft zero-day feud escalates as researcher threatens major exploit release on July 14

The ongoing feud between Microsoft and security researcher Nightmare Eclipse (aka Chaotic Eclipse) has escalated, with the researcher having

theregister.com·1mo ago

Microsoft zero-day feud escalates as researcher threatens major exploit release on July 14

The ongoing feud between Microsoft and security researcher Nightmare Eclipse (aka Chaotic Eclipse) has escalated, with the researcher having

theregister.com·1mo ago

Anonymous researcher releases two new Windows zero-day exploits after Patch Tuesday

An anonymous security researcher (Nightmare-Eclipse/Chaotic Eclipse) has released two new Windows zero-day exploits — YellowKey (a BitLocker

theregister.com·1mo ago

Anonymous researcher releases two new Windows zero-day exploits after Patch Tuesday

An anonymous security researcher (Nightmare-Eclipse/Chaotic Eclipse) has released two new Windows zero-day exploits — YellowKey (a BitLocker

theregister.com·1mo ago

Microsoft bans security researcher from GitHub after zero-day exploit posts; researcher threatens retaliation

A security researcher known as Nightmare-Eclipse (Chaotic Eclipse) has been banned from Microsoft's GitHub platform after allegedly posting

tomshardware.com·1mo ago

Microsoft bans security researcher from GitHub after zero-day exploit posts; researcher threatens retaliation

A security researcher known as Nightmare-Eclipse (Chaotic Eclipse) has been banned from Microsoft's GitHub platform after allegedly posting

tomshardware.com·1mo ago

Security researcher publishes YellowKey zero-day exploit that bypasses Microsoft BitLocker encryption via USB stick

Security researcher Chaotic Eclipse (Nightmare-Eclipse) has published two new zero-day exploits targeting Microsoft systems after their prev

tomshardware.com·1mo ago

Critical FreePBX Zero-Day Vulnerability CVE-2025-57819 Exposed and Exploited

A critical zero-day vulnerability (CVE-2025-57819) has been discovered in FreePBX, a popular open-source PBX system. The article details how

labs.watchtowr.com·9mo ago

Apple patches critical iOS zero-day vulnerability exploited in targeted attacks

Apple has patched a critical zero-day vulnerability (CVE-2026-20700) affecting every iOS version since 1.0, discovered by Google's Threat An

theregister.com·4mo ago

Comments

Sign in to join the conversation.

No comments yet. Be the first.