SECURITYBLEEPING COMPUTER
CISA: Windows BlueHammer flaw now exploited by ransomware gangs
CISA confirmed that ransomware gangs are exploiting a Microsoft Defender privilege escalation vulnerability named BlueHammer, which was previously used in zero-day attacks. The flaw allows attackers to escalate privileges, potentially leading to system compromises.
Related Signal
Adjacent reporting
- Check Point links VPN zero-day attacks to Qilin ransomware gang
- Critrical cPanel flaw mass-exploited in "Sorry" ransomware attacks
- Exploit released for new PinTheft Arch Linux root escalation flaw
- Microsoft Warns of Two Actively Exploited Defender Vulnerabilities
- CISA orders feds to patch BlueHammer flaw exploited as zero-day