Hackers have exploited the code of an unpatched Windows vulnerability that was leaked online to attack at least one organization. The code was recently опубликовал A disgruntled security researcher known by the pseudonym Chaotic Eclipse after Microsoft failed to respond to his vulnerability disclosures.
As the TechCrunchHuntress researchers have identified the exploitation of three Windows vulnerabilities, dubbed BlueHammer, UnDefend, and RedSun. These flaws affect Windows Defender antivirus software and allow attackers to gain administrator privileges on the compromised computer. The code for exploiting these vulnerabilities was published by Chaotic Eclipse on GitHub.
"I didn't bluff Microsoft, and I'm doing it again," he wrote. "A huge thank you to the MSRC leadership for making this possible," Chaotic Eclipse added, referring to Microsoft's Cyber Response Center, which investigates and processes vulnerability reports.
Microsoft has currently released a patch for only one of the three vulnerabilities—BlueHammer, a fix for which became available this week. The other two, UnDefend and RedSun, remain unpatched and continue to pose a threat to systems. The identities of the hackers themselves and their targets have not yet been determined.
John Hammond, a researcher at Huntress, noted that the availability of ready-made attack tools turns security into a grueling race against criminals. Microsoft spokesman Ben Hope responded by stating that the company supports coordinated vulnerability disclosure and remediation before public disclosure.
Source:
Source: 3dnews.ru
