Tag Archives: zero-day vulnerability
Microsoft April 2026 Patch Tuesday: 167 Vulnerabilities Fixed
The Microsoft April 2026 Patch Tuesday update addresses 167 vulnerabilities, including an active SharePoint zero-day and the BlueHammer local privilege escalation flaw. Continue reading
Microsoft Defender Zero-Day: BlueHammer (CVE-2026-33825) Under Active Exploitation
A critical Microsoft Defender Zero-Day, known as BlueHammer, is being actively exploited via a TOCTOU race condition to grant attackers SYSTEM-level privileges. Continue reading
Microsoft Defender RedSun Zero-Day Vulnerability Discovered
A new Microsoft Defender RedSun zero-day vulnerability allows full SYSTEM-level privilege escalation on Windows 11 and Windows Server 2025 despite recent patches. Continue reading
SharePoint Zero-Day CVE-2026-32201: Microsoft Confirms Active Exploitation
Microsoft and CISA have issued urgent warnings regarding the SharePoint Zero-Day CVE-2026-32201, a critical spoofing vulnerability being exploited for social engineering. Continue reading
Iranian Threat Actors Target US Critical Infrastructure in Joint Agency Warning
A joint advisory from the FBI, CISA, and NSA warns that Iranian threat actors are exploiting internet-connected PLCs and Chrome vulnerabilities to disrupt US critical infrastructure. Continue reading
Microsoft Patch Tuesday: Record 167 Vulnerabilities and Critical Zero-Days
The record-breaking Microsoft Patch Tuesday for April 2026 addresses 167 security vulnerabilities, including a critical SharePoint zero-day and the high-profile BlueHammer flaw. Continue reading
Microsoft Patch Tuesday April 2026: Critical Security Analysis
The Microsoft Patch Tuesday April 2026 update addresses 167 vulnerabilities, including two high-risk zero-days in SharePoint Server and Microsoft Defender. Continue reading
April 2026 Patch Tuesday: BlueHammer Zero-Day and Record 167 Fixes
The April 2026 Patch Tuesday addresses a record 167 vulnerabilities, including the critical BlueHammer zero-day in Windows Defender and active SharePoint exploits. Continue reading