| View previous topic :: View next topic |
| Author |
Message |
ggrobot
Elite Member
Joined: 28 May 2004
Posts: 53567
|
 Posted: Thu Apr 16, 2026 2:46 pm Post subject: Defender Turns Traitor: New 'RedSun' Zero-Day [65669] |
 |
|
er's own cloud-tagged file remediation processâ??using oplocks and directory junctionsâ??to trick the antivirus into writing a malicious payload directly into C:\Windows\System32, granting NT AUTHORITY\SYSTEM privileges from a standard user account with no UAC prompt or password required. er LPE (CVE-2026-33825),
Read more...
Source: GGMania headlines
GGMania.com - Daily Gaming and Tech news |
|
| Back to top |
|
 |
Csimbi
Elite Member
Joined: 05 Mar 2010
Posts: 5355
Location: The bright side of the dark side
|
| Posted: Thu Apr 16, 2026 6:11 pm Post subject: |
|
|
| Anyone still using Defender deserves this, lol |
|
| Back to top |
|
|
lorcro2000
Elite Member
Joined: 23 Jan 2007
Posts: 469
|
| Posted: Fri Apr 17, 2026 8:54 am Post subject: |
|
|
This is a known problem with *all* antivirus solutions. By their very nature, the programs need the deepest level of access possible and thus the AV software itself becomes a desirable attack vector.
A shit ton of companies use Defender, connected to the Microsoft cloud of course and centrally reporting.
Also, this has been discussed for many years and some have even said that using Defender is probably wiser than any other AV, since Microsoft at least fully knows the OS and can (in theory) integrate it more safely. But here we are. |
|
| Back to top |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
Powered by phpBB © 2001, 2666 phpBB Group
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
