Nightmare Eclipse is a apt_group tracked across 4 threat clusters and 5 intelligence report mentions on ThreatCluster. First observed May 13, 2026; most recent activity June 17, 2026.
Microsoft has confirmed a critical zero-day vulnerability in Microsoft Defender, identified as CVE-2026-50656, which allows for local privilege escalation. The flaw, dubbed 'RoguePlanet,' was disclosed by security…
A newly disclosed zero-day vulnerability in Visual Studio Code (VS Code) enables attackers to steal GitHub OAuth tokens by tricking users into clicking a malicious link. The flaw exploits the webview message-passing…
On June 9, 2026, Microsoft released its largest Patch Tuesday update, addressing 206 vulnerabilities, including three zero-day flaws. Among the critical vulnerabilities, 32 were rated as critical, with 28 classified as…
Security researcher Nightmare-Eclipse has disclosed two critical zero-day vulnerabilities affecting Windows 11 and Windows Server 2022/2025. The first, YellowKey, allows attackers to bypass BitLocker encryption,…