Hackers exploit unpatched Windows vulnerabilities to breach organizations
Original: Hackers are abusing unpatched Windows security flaws to hack into organizations
Why This Matters
Demonstrates risks of public exploit releases and need for faster patching cycles
Hackers have breached at least one organization using three Windows Defender vulnerabilities published by security researcher Chaotic Eclipse. Only one flaw, BlueHammer, has been patched by Microsoft so far this week.
Cybersecurity firm Huntress reported hackers are actively exploiting three Windows Defender vulnerabilities dubbed BlueHammer, UnDefend, and RedSun. The exploits were published online by researcher Chaotic Eclipse, who cited conflicts with Microsoft's Security Response Center as motivation. All three flaws allow attackers to gain administrator access to Windows computers. Microsoft patched BlueHammer earlier this week, but UnDefend and RedSun remain unpatched. The researcher published exploit code on their GitHub page, writing 'I was not bluffing Microsoft and I'm doing it again.' Microsoft supports coordinated vulnerability disclosure practices, according to communications director Ben Hope.