Disgruntled researcher leaks Defender zero-days, leaving Windows users exposed

April 19, 2026 at 03:44 PM

•

1 min read

Disgruntled researcher leaks Defender zero-days, leaving Windows users exposed — Photo: Tom's Guide

TL;DR Summary

A disgruntled security researcher leaked three Microsoft Defender zero-days—BlueHammer, RedSun and UnDefend—exposing over a billion Windows users; BlueHammer has been patched in the April 2026 updates, while RedSun and UnDefend remain unpatched but are already being exploited in the wild. Users should install the April 2026 security updates now and monitor for future patches, with additional antivirus protection to bolster defenses.

Topics:technology #bluehammer #computing #microsoft-defender #redsun #undefend #windows-11

Share this article

Over 1 billion Windows users at risk after disgruntled security researcher leaks Defender zero-days Tom's Guide
Three Microsoft Defender Zero-Days Actively Exploited; Two Still Unpatched The Hacker News
Hackers are abusing unpatched Windows security flaws to hack into organizations TechCrunch
Recently leaked Windows zero-days now exploited in attacks BleepingComputer
RedSun: Windows 0day when Defender becomes the attacker CloudSEK

Reading Insights

Total Reads

Unique Readers

Time Saved

75 min

vs 76 min read

Condensed

100%

15,139 → 61 words

Want the full story? Read the original article

Read on Tom's Guide

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights