Active zero-day exploitation (Windows, Fortinet)
Key Questions
What zero-days were disclosed by Nightmare-Eclipse?
Nightmare-Eclipse dropped six unpatched Windows zero-days including BlueHammer, YellowKey, and BitLocker bypasses before being banned on GitHub and moving to GitLab.
What is the status of the Fortinet zero-day CVE-2026-35616?
The critical Fortinet zero-day CVE-2026-35616 allows authentication bypass and is actively exploited, leading to its addition to the CISA KEV list.
How has Microsoft responded to the disclosures?
Microsoft has threatened legal action against Nightmare-Eclipse for disclosing unpatched Defender and BitLocker flaws, escalating tensions around responsible disclosure.
Rogue researcher Nightmare-Eclipse banned on GitHub after dropping six unpatched Windows zero-days (BlueHammer, YellowKey, BitLocker bypass); moved to GitLab, threatens July 14 release. Critical Fortinet zero-day CVE-2026-35616 (authentication bypass) actively exploited, CISA KEV listed. New: Microsoft threatens legal action against Nightmare-Eclipse for disclosing unpatched Defender/BitLocker flaws, escalating disclosure tensions.