RedSun
Coverage of RedSun in the Nexus archive.
- Disgruntled 0-day hunter 'humiliated' by Microsoft pledges 'bone shattering drop' as Redmond calls cops
Disgruntled bug hunter Nightmare Eclipse (Chaotic Eclipse) has released six Windows zero-days, prompting Microsoft to issue a blog post condemning uncoordinated disclosure and threatening legal action. Nightmare claims Microsoft humiliated them by deleting their MSRC account and withholding payment, vowing a major release on July 14.
- Three Microsoft Defender Zero-Days Actively Exploited; Two Still Unpatched
Huntress warns that three zero-day vulnerabilities in Microsoft Defender—BlueHammer, RedSun, and UnDefend—are being actively exploited by threat actors to gain elevated system privileges. Two of these vulnerabilities remain unpatched, posing ongoing security risks.
- New Microsoft Defender “RedSun” zero-day PoC grants SYSTEM privileges
A researcher named 'Chaotic Eclipse' has released a proof-of-concept exploit for a Microsoft Defender zero-day vulnerability called 'RedSun,' which grants SYSTEM privileges. The exploit was published as a protest against Microsoft's handling of cybersecurity researchers.
- RedSun: System user access on Win 11/10 and Server with the April 2026 Update
RedSun, a system user access tool for Windows 11/10 and Server, is associated with the April 2026 Update. The article links to its GitHub repository and a Hacker News discussion thread.