Microsoft's bug-hunting nemesis extends vendetta with more zero-day attacks — Nightmare Eclipse publishes RoguePlanet and GreatXML local privilege escalation exploits
A cybersecurity researcher known as Nightmare Eclipse has released two new exploits targeting Microsoft Windows systems. The first, RoguePlanet, is a local privilege escalation exploit that leverages a vulnerability in Windows Defender to gain SYSTEM user access, even on fully patched systems. The second exploit, GreatXML, bypasses BitLocker encryption under specific conditions, requiring an attacker to place crafted files on the Windows recovery partition and trigger a Defender Offline Scan. AI
IMPACT New exploits highlight ongoing vulnerabilities in widely used operating systems, potentially impacting enterprise security and data protection.