Cybersecurity

Active Exploits Weaponize Windows Defender: 2 Unpatched Threats

April 22, 2026 Source: Darkreading 6 views

Three proof-of-concept exploits are actively weaponizing Windows Defender.
The exploits transform Microsoft's built-in security into an attacker tool.
Two of these critical exploits currently remain unpatched, posing ongoing risk.

Intelligence briefing: Why this matters: This vulnerability transforms a primary endpoint security solution into a vector for attack, fundamentally compromising trust in built-in defenses and demanding immediate attention for unpatched threats.

Three proof-of-concept exploits are being used in active attacks against Microsoft's built-in security platform; two are unpatched.

windows defenderexploitsmicrosoft securityactive attacksvulnerabilitiesendpoint securityunpatched

Original reporting: https://www.darkreading.com/cyberattacks-data-breaches/exploits-turn-windows-defender-attacker-tool

Free Weekly Intel Digest

Top 5 defense & cybersecurity briefings every Sunday. Free, no spam, unsubscribe anytime.

Readers from 5+ countries already subscribed