Tag

Defender

All articles tagged with #defender

Microsoft patches RoguePlanet zero-day in Defender with engine update
technology1 day ago

Microsoft patches RoguePlanet zero-day in Defender with engine update

Microsoft released a fix for the RoguePlanet Defender zero-day (CVE-2026-50656) via the Malware Protection Engine update 1.1.26060.3008, following disclosure by Nightmare Eclipse. The race-condition flaw could spawn a SYSTEM-level command prompt on fully patched Windows 10/11, with a PoC claiming success regardless of real-time protection. Microsoft began patching on June 16 and has previously warned of legal action against researchers; this resolution follows a pattern of addressing multiple Windows zero-days disclosed by Nightmare Eclipse, including GreenPlasma, MiniPlasma, and YellowKey.

RoguePlanet Privilege Escalation in Defender Finally Patched, No Action Needed
security2 days ago

RoguePlanet Privilege Escalation in Defender Finally Patched, No Action Needed

Microsoft issued security updates addressing RoguePlanet, a privilege-escalation flaw in the Microsoft Malware Protection Engine (mpengine.dll) that could spawn a SYSTEM shell. The fix arrives in Defender engine version 1.1.26060.3008 with defense-in-depth hardening. Disclosed by Chaotic Eclipse, RoguePlanet can be exploited on Windows systems with the June 2026 Patch Tuesday and works regardless of real-time protection. Microsoft says no customer action is required beyond automatic updates.

GreatXML Bypass Unlocks BitLocker via WinRE XML Files
security1 month ago

GreatXML Bypass Unlocks BitLocker via WinRE XML Files

Security researcher Chaotic Eclipse unveiled GreatXML, a new Windows BitLocker bypass that places crafted unattend.xml and Recovery/WindowsRE/ReAgent.xml on the recovery partition and, after rebooting into WinRE, spawns a shell with unrestricted access to the BitLocker volume. It builds on a recent Defender-related exploit and is the second BitLocker bypass from the researcher, with Microsoft having patched a prior bypass (YellowKey CVE-2026-45585) this Patch Tuesday.

Microsoft patches Defender zero-days actively exploited in the wild
technology1 month ago

Microsoft patches Defender zero-days actively exploited in the wild

Microsoft released patches for two Defender zero-days—CVE-2026-41091 (privilege escalation in Malware Protection Engine) and CVE-2026-45498 (DoS in Antimalware Platform)—to stop active exploits. The updates install automatically by default, but admins should verify the Malware Protection Engine and Antimalware Platform versions are current. CISA added these flaws to its Known Exploited Vulnerabilities catalog and ordered federal agencies to patch by June 3 under BOD 22-01. The piece also notes mitigations for a Windows BitLocker flaw nicknamed YellowKey.

Microsoft Rolls Out Record Patch Tuesday: 169 Fixes Including SharePoint Zero-Day Exploited in the Wild
cybersecurity2 months ago

Microsoft Rolls Out Record Patch Tuesday: 169 Fixes Including SharePoint Zero-Day Exploited in the Wild

Microsoft released a record Patch Tuesday with 169 fixes across its products, highlighted by a SharePoint Server zero-day (CVE-2026-32201) that is actively exploited in the wild. The bundle also patches a Defender privilege-escalation flaw (CVE-2026-33825) tied to BlueHammer and a high-risk IKEv2 remote-code-execution issue (CVE-2026-33824) rated 9.8, along with extensive Edge updates and other critical/important vulnerabilities. Some of the flaws are listed in the CISA KEV catalog, triggering remediation deadlines for government agencies (by April 28, 2026).

GWM Tank Surprises in Aussie Off-Road Test, Outpacing Lexus GX and Land Cruiser
automotive4 months ago

GWM Tank Surprises in Aussie Off-Road Test, Outpacing Lexus GX and Land Cruiser

In an Australian CarExpert off-road comparison of three-row SUVs, the Land Rover Defender claimed the top spot, with the Lexus LX 600 and Prado/Land Cruiser close behind. The Lexus GX and the J300 Land Cruiser struggled on the roller section, while the Chinese GWM Tank breezed through that test and, across the rest of the evaluation, matched or beat the Toyotas in overall scoring—outscoring both GX and the J300—though the host rated the Tank at the bottom due to traction-control quirks, leaving some questions about long-term durability.

Liverpool Nearing £30M Deal for Parma Defender Giovanni Leoni
sports11 months ago

Liverpool Nearing £30M Deal for Parma Defender Giovanni Leoni

Liverpool are close to signing 18-year-old Parma defender Giovanni Leoni for £26 million, beating Italian clubs and other Premier League teams, with Leoni expected to join the first team and replace Jarell Quansah. The young defender, praised by Arrigo Sacchi, has made 17 Serie A appearances and is seen as a future cornerstone for Italy's national team. Liverpool are also in talks with Crystal Palace over Marc Guéhi.

"The Most Outdated Car Designs Revealed"
automotive2 years ago

"The Most Outdated Car Designs Revealed"

The Jaguar CX-75's design has stood the test of time, while some cars have not aged well. Readers are asked to share their picks for the car designs that have aged the worst, with suggestions including the new Defender, latest generation Mustang, and Ford F-150 Lightning. The road-going version of the Jaguar CX-75 has been created almost 14 years after its initial unveiling, prompting discussions about car designs that have not aged gracefully.

"2024 Land Rover Defender: V8 Power and Seating Options Galore"
automotive3 years ago

"2024 Land Rover Defender: V8 Power and Seating Options Galore"

Land Rover is introducing the 2024 Defender Outbound special edition, available only as a 130 with five seats and powered by P400 gasoline and D300 diesel Ingenium engines. It features design tweaks, including a Shadow Atlas Matt finish for the bumpers and grille insert, and comes in four color options with a choice between Windsor leather or Resist fabric upholstery. Land Rover is also offering an eight-seat V8 version of the Defender, which can go from 0 to 62 mph in 5.7 seconds. Additionally, the Defender 110 is now available with a new County Exterior Pack.

Divers discover wreckage of early 1900s submarine in Long Island Sound.
us3 years ago

Divers discover wreckage of early 1900s submarine in Long Island Sound.

Divers in Connecticut have discovered the wreckage of an experimental submarine, the Defender, that was built in 1907 and later scuttled in Long Island Sound. The 92-foot-long boat was found more than 150 feet beneath the water's surface, off the coast of Old Saybrook. The Defender was originally named the Lake and built by millionaire Simon Lake and his Bridgeport-based Lake Torpedo Boat Company in hopes of winning a U.S. Navy contract. The company lost that competition and Lake then tried refitting the boat for minesweeping, salvage and rescue work, renaming it the Defender.

Microsoft Defender misidentifies legitimate URLs as malware
technology3 years ago

Microsoft Defender misidentifies legitimate URLs as malware

Microsoft Defender is causing headaches for IT admins by flagging legitimate URLs, such as Zoom and Google, as potentially dangerous, triggering a flood of alerts. The Defender portal is also experiencing issues, making it difficult to investigate the alerts. Microsoft is aware of the problem and investigating the issue, which is affecting hundreds of accounts and tenants worldwide. The root cause is being isolated by poring over service monitoring. The false alerts were caused by recent additions to the SafeLinks feature, which have since been reverted to fix the issue.

Microsoft Defender mistakenly flags legitimate links as malware
technology3 years ago

Microsoft Defender mistakenly flags legitimate links as malware

Microsoft Defender is flagging legitimate URLs as malicious files or links, causing a high volume of false email security alerts for sysadmins. Microsoft has confirmed the bug and is investigating the issue, which can be tracked under "DZ534539" in the Microsoft 365 Admin Center portal. The bug is causing some alerts to not show content as expected, and Microsoft is reviewing service monitoring telemetry to isolate the root cause and develop a remediation plan.