NOW LET US – AI RAG SaaS Studio TP.HCM
NOW LET US
Digital Product Studio
Back to news
DEV-TOOLS...1 min read

RedSun: System user access on Win 11/10 and Server with the April 2026 Update

Share
NOW LET US Article – RedSun: System user access on Win 11/10 and Server with the April 2026 Update

The RedSun vulnerability exploits a logic flaw in Windows Defender's handling of cloud-tagged files, allowing attackers to overwrite system files and escalate privileges to administrative levels.

The Red Sun vulnerability repository

Now, normally I would just drop the PoC code and let people figure it out. But I can't for this one, it's way too funny. When Windows Defender realizes that a malicious file has a cloud tag, for whatever stupid and hilarious reason, the antivirus that's supposed to protect decides that it is a good idea to just rewrite the file it found again to it's original location. The PoC abuses this behaviour to overwrite system files and gain administrative privileges.

I think antimalware products are supposed to remove malicious files not be sure they are there but that's just me.

© 2026 Now Let Us. All rights reserved.

Source: Hacker News

Advertisement
Ad slot ready: 5887729102

More in this category

NOW LET US Related – Open Code Review – An AI-powered code review CLI tool

dev-tools

Open Code Review – An AI-powered code review CLI tool

Open Code Review is an AI-powered code review CLI tool, originally developed as Alibaba Group's internal assistant, now open-sourced to provide precise, line-level code feedback.

NOW LET US Related – The Website Specification

dev-tools

The Website Specification

A platform-agnostic specification of the technical features every decent website should have, designed for both humans and AI agents.

NOW LET US Related – Avian Visitors

dev-tools

Avian Visitors

Avian Visitors is an open-source project that combines a Raspberry Pi, the BirdNET acoustic classifier, and Gemini AI to automatically identify bird calls and generate beautiful Japanese kachō-e style collages.

EXPLORE TOPICS

Discover All Categories

Deep dive into the specific technology sectors that matter most to you.

AI Frontier
AI Frontier

Foundation models, multimodal systems, and enterprise use cases.

Agentic Systems
Agentic Systems

Task-oriented automation workflows for real operations.

SaaS Growth
SaaS Growth

CAC, LTV, retention, and growth optimization.

Dev Tools
Dev Tools

Codegen tools, next-gen IDEs, and modern dev workflows.

Cybersecurity
Cybersecurity

AI security, Zero Trust, and proactive defense.

Cloud & Infra
Cloud & Infra

Cloud Native, Edge Computing, and GPU Clusters.

Robotics
Robotics

Humanoid robots, autonomous vehicles, and smart hardware.

Startups & VC
Startups & VC

Funding trends, M&A, and the startup ecosystem.