#zero-day Tech News.

ShinyHunters exploited an Oracle zero-day vulnerability to target higher education institutions. The attacks compromised student and faculty data across multiple universities. The group used the unpatched flaw to gain unauthorized access to sensitive systems.

Researcher Nightmare Eclipse released GreatXML, a zero-day exploit that bypasses BitLocker on any system that has run a Microsoft Defender Offline scan. The exploit was published on GitHub. Microsoft has not yet responded about a patch. This brings the researcher's zero-day count to eight.

A zero-day exploit named GreatXML bypasses BitLocker encryption by abusing Microsoft Defender's offline scan to spawn a SYSTEM shell during Recovery Mode boot. The attack requires physical access to the target device.

Security researcher Chaotic Eclipse released RoguePlanet, a seventh Windows zero-day exploit, hours after Microsoft's June Patch Tuesday. It exploits a race condition in Windows Defender to grant SYSTEM privileges on fully patched Windows 10 and 11 machines. The proof-of-concept does not work on Windows Server in its current form.

Microsoft patched two high-severity zero-days disclosed by researcher Nightmare Eclipse after a broken agreement. CVE-2026-45586 is a local privilege escalation in the Windows Collaborative Translation Framework requiring minimal complexity and no user interaction. No active exploitation has been detected yet.

Google released an emergency Chrome update patching CVE-2026-11645, a high-severity V8 out-of-bounds memory access zero-day exploited in the wild. The update brings Chrome to version 149.0.7827.102/.103 for Windows and Mac, fixing 74 security vulnerabilities including 17 critical flaws.

Google patched CVE-2026-11645, an out-of-bounds memory access bug in Chrome's V8 JavaScript engine exploited in the wild. The company awarded a $55,000 bounty to researcher 303f06e3. This is the fifth actively exploited Chrome zero-day fixed in 2026, compared to eight total in 2025.