Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation

Published: 3 weeks ago (May 14, 2026 at 05:25 AM EDT)

1 min read

Source: The Hacker News

Summary

An anonymous cybersecurity researcher who disclosed three Microsoft Defender vulnerabilities has returned with two more zero‑days involving a BitLocker bypass and a privilege escalation impacting Windows Collaborative Translation Framework (CTFMON).

The security defects have been codenamed YellowKey and GreenPlasma, respectively, by the researcher, who goes by the online aliases Chaotic Eclipse.

Back to Blog

Windows BitLocker zero-day gives access to protected drives, PoC released

markdown !https://www.bleepstatic.com/content/hl-images/2026/02/13/Windows-headpic.jpg A cybersecurity researcher has published proof‑of‑concept PoC exploits fo...

Microsoft BitLocker-protected drives can now be opened with just some files on a USB stick — YellowKey zero-day exploit demonstrates an apparent backdoor

!Falling laptop crackinghttps://cdn.mos.cms.futurecdn.net/NoMA8eAVErtvRS5rFYuiQm.jpg Image credit: Getty Images Background Last month, security researcher Chaot...

Zero-Day Exploit Against Windows BitLocker

Exploit Overview The exploit, named YellowKey, was published earlier this week by a researcher who goes by the alias Nightmare‑Eclipse. It reliably bypasses de...

Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws

Overview Ivanti, Fortinet, n8n, SAP, and VMware have released security fixes for a range of vulnerabilities that could be exploited by malicious actors to bypa...

Summary

Related posts

Windows BitLocker zero-day gives access to protected drives, PoC released

Microsoft BitLocker-protected drives can now be opened with just some files on a USB stick — YellowKey zero-day exploit demonstrates an apparent backdoor

Zero-Day Exploit Against Windows BitLocker

Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws