Nightmare-Eclipse
Coverage of Nightmare-Eclipse in the Nexus archive.
- Microsoft Defender RoguePlanet Zero-Day Grants SYSTEM Access on Updated Windows
A security researcher named Chaotic Eclipse (aka Nightmare-Eclipse) has released a proof-of-concept exploit for a Microsoft Defender zero-day vulnerability called RoguePlanet, which grants SYSTEM access on updated Windows systems. The exploit, a race condition with a reported 100% success rate, was published under the GitHub account MSNightmare.
- Microsoft reaches for olive branch after public dustup with 0-day researcher
Microsoft softened its stance after initially threatening legal action against researcher Nightmare-Eclipse for publicly disclosing Windows zero-day vulnerabilities. The researcher released exploit code, prompting Microsoft to face backlash from the security community. Microsoft's updated statement emphasized no legal pursuit against security researchers but stopped short of addressing specific allegations.
- One of many reasons why you don't want to store your keys on a computer or server: Microsoft secretly built a backdoor into BitLocker
A security researcher known as Nightmare-Eclipse discovered a backdoor in Microsoft's BitLocker, which can be exploited using the YellowKey vulnerability to bypass full-volume encryption. The researcher claims that this backdoor was intentionally introduced by Microsoft. The vulnerability can be used to access encrypted data without passwords.
- Zero-day exploit completely defeats default Windows 11 BitLocker protections
A zero-day exploit named YellowKey can bypass default Windows 11 BitLocker protections, allowing access to an encrypted drive within seconds. The exploit was published by a researcher known as Nightmare-Eclipse and targets Microsoft's full-volume encryption protection. This exploit is significant as BitLocker is a mandatory protection for many organizations.
- Mystery Microsoft bug leaker keeps the zero-days coming
An anonymous security researcher released details about two new Windows zero-day vulnerabilities, YellowKey and GreenPlasma, which can bypass BitLocker protection and escalate privileges. The researcher provided technical information on how to exploit them, raising serious security concerns. Experts warn that these vulnerabilities pose significant risks, especially for organizations using BitLocker.
- RedSun: System user access on Win 11/10 and Server with the April 2026 Update
RedSun, a system user access tool for Windows 11/10 and Server, is associated with the April 2026 Update. The article links to its GitHub repository and a Hacker News discussion thread.