Breaking 19:38 Trump suggests possible Syrian role against Hezbollah, drawing criticism of Israel’s strategy 19:00 UN human rights chief warns renewed U.S.-Iran conflict threatens regional stability 18:39 Pentagon faces higher projected costs for military operations involving Iran 18:30 Chipotle opens first restaurant in Mexico as U.S. burrito chain expands internationally 18:18 Startup plans first space mirror to deliver sunlight on demand, raising scientific concerns 16:05 Google unveils major update to Google Images after 25 years 16:00 U.S. House Republicans unveil $95 billion spending blueprint for defense, election and agriculture priorities 14:59 Morocco formalizes participation in international stabilization force for Gaza 14:32 World Cup 2026 final to feature extended halftime show with global music stars 14:30 Progressive posts higher quarterly profit as auto insurance demand remains strong 13:45 U.S. cyber espionage case shines spotlight on former Kaspersky employee accused of hacking 13:41 Roscosmos and Nasa agree to extend International Space Station operations through 2030 13:05 Poll finds majority of Americans oppose military action against Iran 12:45 E. Jean Carroll receives $5.62 million following civil judgment against Donald Trump 12:16 Google AI chief calls for independent regulator to test advanced artificial intelligence systems 12:00 China rejects US sanctions plan targeting buyers of Russian oil 12:00 Historic heat wave puts nearly 100 million people under alerts across the United States 11:25 US freezes over $130 million in cryptocurrency linked to Iran 10:16 Democratic lawmakers criticize US policy toward Cuba after congressional visit 10:02 ASML includes Terafab demand in chip equipment expansion plans for 2027 and 2028 10:00 Iran–US tensions escalate as Strait of Hormuz security raises global trade concerns 09:31 Oscar-winning actress Ellen Burstyn to receive Venice Film Festival Golden Lion for lifetime achievement 09:30 Family of detained US seismologist urges China to release scientist held on espionage charges

New Windows Defender zero-day enables system privileges escalation

Wednesday 10 June 2026 - 11:17
By: Dakir Madiha
New Windows Defender zero-day enables system privileges escalation

A new security flaw has emerged in Microsoft Defender shortly after the release of a major Patch Tuesday update cycle. The vulnerability allows attackers to gain SYSTEM-level privileges on fully updated Windows 10 and Windows 11 machines. The issue stems from a race condition inside Microsoft Defender, exposing systems even after recent security patches were applied.

The exploit, named RoguePlanet, was released as a proof-of-concept by a security researcher known as Nightmare Eclipse. The code demonstrates how local privilege escalation can be achieved on systems that have installed the June 2026 cumulative update KB5094126. Independent security analysis confirmed that the exploit functions as described and can be reproduced under real-world conditions.

ThreatLocker, a cybersecurity company, validated the findings after testing the exploit on updated Windows 11 systems. Its engineers confirmed that the attack can successfully elevate privileges under specific conditions, although execution depends on timing due to the race condition. The company noted that application allowlisting can block the exploit by restricting unauthorized execution paths on affected systems.

The researcher behind RoguePlanet stated that the exploit originally targeted remote code execution through Microsoft Defender handling of SMB share files, but later changes to Microsoft’s API forced a shift toward local privilege escalation. The researcher also described variable success rates across machines, indicating inconsistent exploitation depending on system behavior.

This disclosure is part of a broader campaign that has seen multiple zero-day releases targeting Windows components in recent months. Microsoft’s latest Patch Tuesday addressed more than 200 vulnerabilities, including several previously disclosed flaws. Among them was a privilege escalation issue in Defender that was already known to be actively exploited in the wild, highlighting continued pressure on the company’s security response cycle.

Microsoft initially reacted strongly to the wave of disclosures, suggesting possible legal action against individuals causing harm. The company later reversed its position and returned to a coordinated vulnerability disclosure framework. Despite this shift, the researcher continued publishing additional exploits through independent infrastructure.


  • Fajr
  • Sunrise
  • Dhuhr
  • Asr
  • Maghrib
  • Isha

Read more

This website, walaw.press, uses cookies to provide you with a good browsing experience and to continuously improve our services. By continuing to browse this site, you agree to the use of these cookies.