Close Menu
TechTost
  • AI
  • Apps
  • Crypto
  • Fintech
  • Hardware
  • Media & Entertainment
  • Security
  • Startups
  • Transportation
  • Venture
  • Recommended Essentials
What's Hot

With EU support, QuantumDiamonds aims to accelerate chip manufacturing

Federal authorities are demanding that autonomous vehicle companies stop interfering with first responders

Google’s deepfake detection system used to debunk McConnell’s hoax

Facebook X (Twitter) Instagram
  • About Us
  • Contact Us
  • Privacy Policy
  • Terms and Conditions
  • Disclaimer
Facebook X (Twitter) Instagram
TechTost
Subscribe Now
  • AI

    Google’s deepfake detection system used to debunk McConnell’s hoax

    9 July 2026

    Meta wants its AI glasses to look less creepy. Her AI strategy tells her otherwise.

    8 July 2026

    Meta just released a new AI generator, Muse Image, and users are already pulling back from using their photos

    8 July 2026

    Claude Cowork expands to mobile and web

    7 July 2026

    The ‘first’ ransomware attack run by AI still needed a human

    7 July 2026
  • Apps

    Truecaller clashes with India’s telecom regulator over anti-spam rules

    9 July 2026

    WeWard powered by Venus Williams can now lock your apps until you make your move

    8 July 2026

    Discord admits AI moderation bug unfairly banned users for innocuous images

    8 July 2026

    X adds a video editor to encourage creators to post original content, not stolen reposts

    7 July 2026

    You can now adjust the pace and expressiveness of Siri in the latest iOS 27 beta

    7 July 2026
  • Crypto

    Venice AI goes unicorn with $65M Series A as first privacy AI platform takes off

    1 July 2026

    Crypto Exchange OKX wants AI agents to hire and pay each other

    30 June 2026

    Startup Battlefield 200 applications close today

    27 May 2026

    5 days left: Save up to $410 on Disrupt 2026 passes

    25 May 2026

    As crypto cools, a16z crypto raises $2.2 billion in capital

    6 May 2026
  • Fintech

    India’s payments chief believes artificial intelligence will play a big part in the next era of digital payments development

    28 June 2026

    Early Bird pricing ends tonight for the Founder Summit

    26 June 2026

    4 days left to save up to $190 on Founder Summit 2026

    23 June 2026

    Robinhood’s note on 10% layoffs shows that blaming AI doesn’t cut it

    17 June 2026

    Anthropic’s latest spat with the Trump administration may actually help it, sales figures suggest

    17 June 2026
  • Hardware

    US investors will soon have access to SK Hynix, another memory maker driving the AI ​​boom

    7 July 2026

    Smart glasses maker Even Realities hits $1 billion valuation with $150 million in funding led by Meituan, Tencent

    6 July 2026

    5 office gadgets that can make your work day better

    6 July 2026

    IQM, Europe’s first public quantum company, admits that the future of the technology is uncertain

    3 July 2026

    Thiel Capital’s Jack Selby commits stakes in hot startups like Etched through Arizona connections

    3 July 2026
  • Media & Entertainment

    Netflix is ​​dealing with shorter video content with its new set of publisher deals with Variety and others

    8 July 2026

    Netflix invented binge watching. Now he may be over it.

    7 July 2026

    New Google ad imagines a Declaration of Independence written with the help of artificial intelligence

    4 July 2026

    Cloudflare’s new policy pushes AI companies to pay for publishers’ content

    1 July 2026

    Watch out, Amazon: The Kobo eReader now has a Goodreads rival

    29 June 2026
  • Security

    Hacktivists call out Trump by hacking and defacing US military websites

    8 July 2026

    Canada’s spy agency says it hacked drug traffickers, extremists and a ransomware gang last year

    6 July 2026

    Politician who investigated abuses of wiretapping software on his phone with Pegasus spyware

    3 July 2026

    The US government says it’s been hacked — again

    2 July 2026

    In major privacy victory, Supreme Court rules that geo-trafficking warrants are protected by privacy rights

    29 June 2026
  • Startups

    With EU support, QuantumDiamonds aims to accelerate chip manufacturing

    9 July 2026

    Prime Intellect Raises $130M Series A to Help Enterprises Build Their Own AI Agents

    8 July 2026

    Final extension: Startup Battlefield Australia applications now close on 20 July

    8 July 2026

    Savi’s app aims to protect consumers from realistic AI scams like kidnappers demanding ransom

    7 July 2026

    Station F emerges as a launch pad for Europe’s hottest AI startups

    6 July 2026
  • Transportation

    Federal authorities are demanding that autonomous vehicle companies stop interfering with first responders

    9 July 2026

    Another massive data breach exposed millions of driver’s license numbers

    8 July 2026

    This startup brings dealers together to bid on your used car

    7 July 2026

    Chevy built an all-American EV truck — why isn’t anyone buying it?

    3 July 2026

    Rivian raises EV sales forecast as second-quarter production ramps up

    3 July 2026
  • Venture

    What are bending spoons? The little-known owner of AOL and Vimeo who is now public

    5 July 2026

    After $18B IPO, Bending Spoons Founder Says Success Comes From Minimizing Luck

    2 July 2026

    Bending Spoons defies SaaS slump, up 40% on first day of trading

    2 July 2026

    The DeepMind trio that created a poker AI is now making money for quantitative hedge funds

    1 July 2026

    Patronus AI lands $50 million to create ‘digital worlds’ that stress-test AI agents

    26 June 2026
  • Recommended Essentials
TechTost
You are at:Home»Security»Hackers are exploiting unpatched Windows security flaws to break into organizations
Security

Hackers are exploiting unpatched Windows security flaws to break into organizations

techtost.comBy techtost.com17 April 202603 Mins Read
Share Facebook Twitter Pinterest LinkedIn Tumblr Email
Hackers Are Exploiting Unpatched Windows Security Flaws To Break Into
Share
Facebook Twitter LinkedIn Pinterest Email

Hackers broke into at least one organization using Windows vulnerabilities posted online by a disgruntled security researcher in the past two weeks, according to a cybersecurity firm.

On Friday, cybersecurity firm Huntress said a series of posts on X that its researchers have seen hackers exploiting three Windows security flaws, called BlueHammer, UnDefend and RedSun.

It is unclear what the target of this attack is and who the hackers are.

BlueHammer is the only bug among the three exploitable vulnerabilities Microsoft has patched up to here. A patch for BlueHammer was released earlier this week.

It appears that hackers are exploiting the bugs using exploit code that the security researcher posted online.

Earlier this month, a researcher going to Chaotic Eclipse published on their blog what they said was code to exploit an unpatched vulnerability in Windows. The researcher cited some conflict with Microsoft as the motivation behind releasing the code.

“I didn’t bluff Microsoft and I’m doing it again,” they say he wrote. “Many thanks to the MSRC leadership for making this possible,” they added, referring to Microsoft’s Security Response Center, the company’s team that investigates cyberattacks and handles vulnerability reports.

Techcrunch event

San Francisco, California
|
13-15 October 2026

Days later, Chaotic Eclipse published UnDefend and then earlier this week published RedSun. The researcher published code to exploit all three of its vulnerabilities GitHub page.

All three vulnerabilities affect Microsoft’s Windows Defender antivirus, allowing a hacker to gain high-level or administrator access to an affected Windows computer.

TechCunch was unable to reach Chaotic Eclipse for comment.

In response to a series of specific questions, Microsoft communications director Ben Hope said in a statement that the company supports “coordinated vulnerability disclosure, a widely adopted industry practice that helps ensure issues are carefully investigated and addressed before public disclosure, supporting both customer protection and the security research community.”

This is a case of what the cybersecurity industry calls “full disclosure.” When researchers find a flaw, they can report it to the affected software manufacturer to help them fix it. At that point, the company usually acknowledges receipt, and if the vulnerability is legitimate, the company works to patch it. Often, the company and the researchers agree on a timeline that determines when the researcher can publicly explain their findings.

Sometimes, for various reasons, this communication breaks down and researchers publicly disclose details of the bug. In some cases, in part to demonstrate the existence or severity of a flaw, researchers go a step further and publish “proof of concept” code capable of exploiting that flaw.

When that happens, cybercriminals, government hackers and others can then take the code and use it for their own attacks, prompting cybersecurity defenders to rush to deal with the consequences.

“Because these are so readily available now and they’re already weaponized for easy use, for better or worse, I think that ultimately puts us in another tug-of-war between defenders and cybercriminals,” John Hammond, one of the researchers at Huntress who was following the case, told TechCrunch.

“Scenarios like these force us to compete with our adversaries; defenders are frantically trying to protect against malicious actors who are quick to exploit these exploits … especially now that they are just ready-made attack tools,” Hammond said.

Break cyber security errors exploiting flaws hackers infosec Microsoft organizations security unpatched vulnerabilities Windows Zero-days
Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
Previous ArticleSaySo is a new short-form video app that aims to restore users’ trust in news
Next Article Netflix plans to add a vertical video stream, use AI for recommendations
bhanuprakash.cg
techtost.com
  • Website

Related Posts

Another massive data breach exposed millions of driver’s license numbers

8 July 2026

Hacktivists call out Trump by hacking and defacing US military websites

8 July 2026

Canada’s spy agency says it hacked drug traffickers, extremists and a ransomware gang last year

6 July 2026
Add A Comment

Leave A Reply Cancel Reply

Don't Miss

With EU support, QuantumDiamonds aims to accelerate chip manufacturing

9 July 2026

Federal authorities are demanding that autonomous vehicle companies stop interfering with first responders

9 July 2026

Google’s deepfake detection system used to debunk McConnell’s hoax

9 July 2026
Stay In Touch
  • Facebook
  • YouTube
  • TikTok
  • WhatsApp
  • Twitter
  • Instagram
Fintech

India’s payments chief believes artificial intelligence will play a big part in the next era of digital payments development

28 June 2026

Early Bird pricing ends tonight for the Founder Summit

26 June 2026

4 days left to save up to $190 on Founder Summit 2026

23 June 2026
Startups

With EU support, QuantumDiamonds aims to accelerate chip manufacturing

Prime Intellect Raises $130M Series A to Help Enterprises Build Their Own AI Agents

Final extension: Startup Battlefield Australia applications now close on 20 July

© 2026 TechTost. All Rights Reserved
  • About Us
  • Contact Us
  • Privacy Policy
  • Terms and Conditions
  • Disclaimer

Type above and press Enter to search. Press Esc to cancel.