Three Zero-Day Vulnerabilities in Microsoft Defender Actively Exploited

Three zero-day vulnerabilities in Microsoft Defender—named BlueHammer, RedSun, and UnDefend—are now being actively exploited by cybercriminals. The flaws were identified in the security software, though no specific CVE IDs, dates of discovery, or technical details about the exploitation methods were provided. The article confirms the attacks are ongoing but does not specify the affected versions of Microsoft Defender or the geographic scope of the incidents. No information on the threat actors or the exact impact of the exploits, such as privilege escalation or remote code execution, was disclosed. The vulnerabilities were reported without additional context on mitigation or patches.