New Windows Zero-Day Vulnerabilities Disclosed by Anonymous Researcher

An anonymous cybersecurity researcher, operating under the alias Chaotic Eclipse, disclosed two new Windows zero-day vulnerabilities affecting BitLocker encryption and the Windows Collaborative Translation Framework (CTFMON). The flaws are codenamed YellowKey (BitLocker bypass) and GreenPlasma (privilege escalation via CTFMON). The researcher previously reported three Microsoft Defender vulnerabilities but no specific dates, CVE IDs, or technical exploitation details were provided for these latest issues. The vulnerabilities impact Windows systems but no affected versions or patch availability were mentioned. The BitLocker bypass could allow unauthorized access to encrypted data, while the CTFMON flaw enables privilege escalation.