Friday, 29 May 2026

Announcing Bitskrieg

 -----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA512


Soooo, something extremely funny is happening.


After the recent events, multiple researchers reached out to me and some just literally gave me free vulnerabilities...

One of them was JonasLyk, he did most work, I just did the emotional support part. But he found a way to violate secure boot trust, it's not a full secure boot bypass but it breaks the guarantees secure boot is supposed provide. We believe this be used to compromise confidential virtual machines but we're not really sure if that's possible since we don't have access to such technologies.

One thing we're sure of, is it fully bypasses bitlocker.


The bug will be released sometime in June ;)

-----BEGIN PGP SIGNATURE-----


iHUEARYKAB0WIQRJTvAf/AWVhAKEeb7FFoRCS0/SbAUCahqAywAKCRDFFoRCS0/S

bHA+AQCILdI4RpsBgQlBXMj+AiDQAD7pY66DzWb20jqqAh1FTQEAiGtNbE8T337u

wzeziu45/o+T4PdtQw+3sTInYFf56A8=

=V+4y

-----END PGP SIGNATURE-----


at 26 comments:

 

at 5 comments:

Thursday, 28 May 2026

7

 


at 12 comments:

Sunday, 24 May 2026

Welp

 Unsigned message because not important but tomorrow will be one of the hardest days in my life.

Wish me luck.

at 34 comments:

Saturday, 23 May 2026

July 14th

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA512


Okay,


So let me get this straight, when I actively asked you to communicate with me, you refused, humiliated me and made sure to insult me in front of people.

You defame me in public with your CVE-2026-45585 advisory even though you literally deleted the Microsoft account I used to report bugs to you with and I got zero pennies from doing so and I still happily did like an idiot.

Now you take the courtesy to flag my github account and wipe it out of the public, just like that ? You are proving to everyone that you actively escalating this conflict but I'm done begging you.

I might sound like crazy idiot who is whinning around but I have proof for every single word I said, I just can't release it yet. Why ? Microsoft still has chains in my hands, it's been like this for years and I just can't stay silent anymore. I hope I can release the documents soon.


Mark this date July 14th, I will make sure your bones are shattered that day. Nothing will be released this June (or maybe I will release smtg, depending on circumstances).


Also,

CVE-2026-45498 is UnDefend

CVE-2026-41091 is RedSun



New GitLab account,

https://gitlab.com/nightmare-eclipse

-----BEGIN PGP SIGNATURE-----


iHUEARYKAB0WIQRJTvAf/AWVhAKEeb7FFoRCS0/SbAUCahGg+gAKCRDFFoRCS0/S

bBMIAPsEczivsL71pbJizJHHlNNOf9guPAFFshJhhkwrDrwZ5wD/Vz6Z+d6vSvhQ

uVrEh4lPM84Q8+J56RLa50Zp46QLkAY=

=8wON

-----END PGP SIGNATURE-----


at 17 comments:

Wednesday, 20 May 2026

Dear Microsoft,

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA512


Regarding CVE-2026-45585,


"Microsoft is aware of a security feature bypass vulnerability in Windows publicly referred to as "YellowKey". The proof of concept for this vulnerability has been made public violating coordinated vulnerability best practices."


Saying that I violated CVD best practices is a defamation of my personal reputation, you already told me you will defaming me and doing it in public will not help dissolve this conflict.

You intentionally revoked my access to my MSRC account that I used to report vulnerabilities to you, when I asked you, you went ahead and completely wiped the account from existance despite multiple attempts from asking for an explanation. All of those requests went unanswered by the MSRC leadership.


I'm taking your statement very personally.


-----BEGIN PGP SIGNATURE-----


iHUEARYKAB0WIQRJTvAf/AWVhAKEeb7FFoRCS0/SbAUCag3sIAAKCRDFFoRCS0/S

bGSGAQDELxy4ZBT4kvHoIHtyX0FEbGZdTaksQOrOLwLVOWRYhQEAgvaD1GeSyK2+

oWRzWr9CNANzXZMKgRBkUFoQG9Tv1AA=

=WRSl

-----END PGP SIGNATURE-----


at 1 comment:

Friday, 15 May 2026

MiniPlasma, a powerful LPE

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA512


This one is accidental, I didn't even think cldflt.sys had that vulnerability. Turns out CVE-2020-17103 patch is just not present at all ?


The new PoC was tested against fully patched Windows 11 and Windows Server 2025 and managed to flawlessly spawn a SYSTEM shell.


https://github.com/Nightmare-Eclipse/MiniPlasma

-----BEGIN PGP SIGNATURE-----


iHUEARYKAB0WIQRJTvAf/AWVhAKEeb7FFoRCS0/SbAUCaggLWQAKCRDFFoRCS0/S

bHKSAP4/bkKYCDTKZvq5WoUsWKuYgWBvlfun8KYJtNgYREezVAEAj8cg30Pjcjcu

REzr4eniahPoc6bleEEos0PwVOUa5AA=

=oct9

-----END PGP SIGNATURE-----


at 4 comments:
Subscribe to: Posts (Atom)

Announcing Bitskrieg

  -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Soooo, something extremely funny is happening. After the recent events, multiple researche...

  • Public disclosure
    I was not bluffing Microsoft and I'm doing it again. https://github.com/Nightmare-Eclipse/BlueHammer Unlike previous times, I'm not ...
  • July 14th
    -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Okay, So let me get this straight, when I actively asked you to communicate with me, you ref...
  • We're doing silent patches now huh, also a quick note about YellowKey
    -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 I just noticed that Microsoft silently patched the RedSun vulnerability, no CVE, no nothing,...