CRITICALAdvisoryJun 30, 2026
Action required
Immediately patch Microsoft Defender to the latest version released April 14 or later. Hunt for Defender process anomalies, suspicious parent-child relationships, and unsigned executables spawned from Defender components. Check for evidence of exploitation in Windows Defender logs and ETW traces from the zero-day window.
Affected products
Microsoft DefenderMicrosoftCISAHuntress
CVE IDs
Linked articles