Find notable cyber news and cases, enriched with sources, timelines, and signals.

Microsoft Defender BlueHammer (CVE-2026-33825) Patch Tuesday update

Security Patch Release
First reported
Last updated
Happening score
H score 36
1 unique sources, 3 articles

Summary

Hide ▲

Microsoft shipped a Patch Tuesday fix for CVE-2026-33825, a Microsoft Defender local-privilege-escalation flaw that can lead to SYSTEM access. The update narrows exposure on affected Windows 10, Windows 11, and Windows Server systems when Defender is enabled. It matters because a released exploit showed the issue was already actionable before the fix landed.

Cases

Related Happenings

Microsoft Defender BlueHammer (CVE-2026-33825) ransomware exploitation wave

Exploitation Wave
H score41 First: 30.06.2026 11:53 Last: 30.06.2026 11:53 Sources 1

How related: CISA has now also flagged it as exploited in ransomware campaigns in a Monday update to its KEV Catalog.

About this happening: CISA has flagged **BlueHammer (CVE-2026-33825)** as exploited in **ransomware campaigns**, expanding the risk to **Windows devices** exposed to privilege escalation. The flaw in *...

Microsoft releases RoguePlanet Defender security update for CVE-2026-50656

Security Patch Release
H score32 First: 17.06.2026 20:36 Last: 17.06.2026 20:36 Sources 1

About this happening: **Microsoft** has released a **security update** for **CVE-2026-50656**, remediating **RoguePlanet** in the **Microsoft Malware Protection Engine (mpengine.dll)**. The flaw is a *...

Latest development: 09.07.2026 11:48

Microsoft released security updates for CVE-2026-50656, remediating the RoguePlanet privilege-escalation flaw in Microsoft Malware Protection Engine (mpengine.dll) with version 1.1.26060.3008 and additional defense-in-depth updates. Microsoft said no customer action is required to install the update.

Microsoft YellowKey patch release (CVE-2026-45585)

Security Patch Release
H score20 First: 11.06.2026 20:43 Last: 11.06.2026 20:43 Sources 1

About this happening: Microsoft's **Patch Tuesday** updates this week patched **YellowKey (CVE-2026-45585)**, closing a **Windows BitLocker** bypass that could expose protected volumes. The vendor rele...

Microsoft Windows June 2026 Patch Tuesday zero-day fixes (multiple vulnerabilities)

Security Patch Release
H score40 First: 10.06.2026 12:57 Last: 10.06.2026 12:57 Sources 1

About this happening: **Microsoft**'s **June 2026 Patch Tuesday** fixed **three Windows zero-days** that could yield **SYSTEM** access or bypass **BitLocker** on vulnerable systems.

Microsoft June 2026 Patch Tuesday GreenPlasma and YellowKey fixes

Security Patch Release
H score15 First: 10.06.2026 02:11 Last: 10.06.2026 02:11 Sources 1

About this happening: **Microsoft** released **June 2026 Patch Tuesday** updates that fixed the **GreenPlasma** and **YellowKey** flaws, closing two previously disclosed issues in the Windows ecosystem...

Timeline

  1. 16.04.2026 23:19 3 articles · 2mo ago

    Microsoft ships Patch Tuesday fix for CVE-2026-33825

    Mitigation Patch Update

    Microsoft fixed CVE-2026-33825 as part of this month's Patch Tuesday security updates, closing a Microsoft Defender local privilege escalation flaw that could grant SYSTEM privileges on Windows 10, Windows 11, and Windows Server when Windows Defender is enabled.

    Show sources