Another PoC exploit released by ‘BlueHammer’ leaker after Microsoft dispute

Security researcher Chaotic Eclipse has published a proof-of-concept exploit for a Microsoft Defender zero-day vulnerability dubbed "RedSun" over a week after the release of an exploit code for the BlueHammer flaw in Defender, tracked as CVE-2026-33825, GBHackers News reports.

The exploit targets a recently patched vulnerability in CVE-2026-33825 and was released in a public GitHub repository. According to Chaotic Eclipse's blog post, they initially followed proper protocol by submitting a bug report to the Microsoft Security Response Center, but the report was dismissed despite the risk of public disclosure. The researcher also said that Microsoft intervened with their work and treated them unfairly. They called the company's public statements out of touch and patronizing. Chaotic Eclipse revealed the RedSun code via a PGP-signed message on their personal blog.