<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-05T10:53:08.438989+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/0d1cf0af-4786-4091-a427-9f5d4ec3ce95/export</id>
    <title>0d1cf0af-4786-4091-a427-9f5d4ec3ce95</title>
    <updated>2026-07-05T10:53:08.465535+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "0d1cf0af-4786-4091-a427-9f5d4ec3ce95", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-33825", "type": "seen", "source": "https://bsky.app/profile/cyberveille-ch.bsky.social/post/3mpqzi54sp322", "content": "\ud83d\udce2 CVE-2026-33825 (BlueHammer) dans Microsoft Defender exploit\u00e9e dans des attaques ransomware\n\ud83d\udcdd \ud83d\udcf0 **Source** : SecurityWeek \u2014 **Date de publicati\u2026\nhttps://cyberveille.ch/posts/2026-07-03-cve-2026-33825-bluehammer-dans-microsoft-defender-exploitee-dans-des-attaques-ransomware/ #BlueHammer #Cyberveille", "creation_timestamp": "2026-07-03T17:00:22.597068Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/0d1cf0af-4786-4091-a427-9f5d4ec3ce95/export"/>
    <published>2026-07-03T17:00:22.597068+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/efbbd049-d33a-4d2f-b4af-a3e9e4a5303f/export</id>
    <title>efbbd049-d33a-4d2f-b4af-a3e9e4a5303f</title>
    <updated>2026-07-05T10:53:08.467477+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "efbbd049-d33a-4d2f-b4af-a3e9e4a5303f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33825", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mpnhwu53zc2a", "content": "CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks\n\nCISA confirms BlueHammer (CVE-2026-33825) is now used in ransomware attacks to gain SYSTEM privileges through Microsoft Defender. BlueHammer, tracked as CVE-2026-33825, has moved from proof-of-concept no\u2026\n#hackernews #microsoft #news", "creation_timestamp": "2026-07-02T07:08:30.432189Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/efbbd049-d33a-4d2f-b4af-a3e9e4a5303f/export"/>
    <published>2026-07-02T07:08:30.432189+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/2c8a4136-2ccb-4382-a701-2cd3d80cea2d/export</id>
    <title>2c8a4136-2ccb-4382-a701-2cd3d80cea2d</title>
    <updated>2026-07-05T10:53:08.467635+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "2c8a4136-2ccb-4382-a701-2cd3d80cea2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33825", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mpmyftwohd2w", "content": "Top 3 CVE for last 7 days:\nCVE-2026-46817: 30 interactions\nCVE-2026-8461: 27 interactions\nCVE-2026-47729: 25 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-46817: 10 interactions\nCVE-2026-43503: 8 interactions\nCVE-2026-33825: 4 interactions\n", "creation_timestamp": "2026-07-02T02:30:33.325141Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/2c8a4136-2ccb-4382-a701-2cd3d80cea2d/export"/>
    <published>2026-07-02T02:30:33.325141+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/17a692d2-e66f-4189-b6b8-d7f137f6b2d3/export</id>
    <title>17a692d2-e66f-4189-b6b8-d7f137f6b2d3</title>
    <updated>2026-07-05T10:53:08.467749+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "17a692d2-e66f-4189-b6b8-d7f137f6b2d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33825", "type": "seen", "source": "https://bsky.app/profile/securitylab-jp.bsky.social/post/3mpmkoy2g4s2b", "content": "Microsoft Defender\u306e\u8106\u5f31\u6027BlueHammer(CVE-2026-33825)\u304c\u30e9\u30f3\u30b5\u30e0\u30a6\u30a7\u30a2 \u653b\u6483\u306b\u60aa\u7528\nrocket-boys.co.jp/security-mea...\n\n#\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5bfe\u7b56Lab #security #securitynews #cyberattack", "creation_timestamp": "2026-07-01T22:25:09.792991Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/17a692d2-e66f-4189-b6b8-d7f137f6b2d3/export"/>
    <published>2026-07-01T22:25:09.792991+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/8a06156f-dee5-498d-b677-f7d567a338b1/export</id>
    <title>8a06156f-dee5-498d-b677-f7d567a338b1</title>
    <updated>2026-07-05T10:53:08.467855+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "8a06156f-dee5-498d-b677-f7d567a338b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33825", "type": "seen", "source": "https://bsky.app/profile/intelnightowl.bsky.social/post/3mplslby3ns2n", "content": "BlueHammer CVE-2026-33825 now exploited by ransomware to gain privileges via Microsoft Defender warning from #CISA cyber attacks threaten infrastructure in the #USA. #CyberSecurity #Ran https://securityaffairs.com/194577/security/cisa-warns-bluehammer-flaw-is-now-exploited-in-ransomware-attacks.html", "creation_timestamp": "2026-07-01T15:13:33.923837Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/8a06156f-dee5-498d-b677-f7d567a338b1/export"/>
    <published>2026-07-01T15:13:33.923837+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/1060ee35-b886-4621-b5e1-f0cee517fe97/export</id>
    <title>1060ee35-b886-4621-b5e1-f0cee517fe97</title>
    <updated>2026-07-05T10:53:08.467956+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "1060ee35-b886-4621-b5e1-f0cee517fe97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33825", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3mplinir2if2t", "content": "BlueHammer CVE-2026-33825: The Silent Windows Defender Flaw That Turned Into a Global Ransomware Weapon in the Wild +\u00a0Video\n\nA Hidden Vulnerability That Escaped the Lab and Entered Real Attacks BlueHammer, tracked as CVE-2026-33825, has rapidly evolved from a proof-of-concept security concern into\u2026", "creation_timestamp": "2026-07-01T12:15:50.817755Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/1060ee35-b886-4621-b5e1-f0cee517fe97/export"/>
    <published>2026-07-01T12:15:50.817755+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/83b109bf-4db4-4c3a-b319-34d0f975b81d/export</id>
    <title>83b109bf-4db4-4c3a-b319-34d0f975b81d</title>
    <updated>2026-07-05T10:53:08.468051+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "83b109bf-4db4-4c3a-b319-34d0f975b81d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33825", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mplaxxltfgm2", "content": "CISA says Microsoft Defender \u2018BlueHammer\u2019 now used in ransomware attacks CISA\u2019s Known Exploited Vulnerabilities catalog now lists CVE-2026-33825 as having known ransomware campaign use . CISA...\n\n#Healthcare #cybersecurity #news\n\nOrigin | Interest | Match", "creation_timestamp": "2026-07-01T09:58:36.058472Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/83b109bf-4db4-4c3a-b319-34d0f975b81d/export"/>
    <published>2026-07-01T09:58:36.058472+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/3f9c3301-cefd-4f1a-a22e-ebba32004994/export</id>
    <title>3f9c3301-cefd-4f1a-a22e-ebba32004994</title>
    <updated>2026-07-05T10:53:08.468151+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "3f9c3301-cefd-4f1a-a22e-ebba32004994", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33825", "type": "seen", "source": "https://bsky.app/profile/se-nyheter.bsky.social/post/3mplaakkwl62r", "content": "S\u00e5rbarheten Blue Hammer utnyttjas aktivt av hackare\n\nhttps://www.europesays.com/se/292966/\n\nDen amerikanska myndigheten CISA varnar f\u00f6r att hackare aktivt utnyttjar Blue Hammer (CVE-2026-33825), en s\u00e5rbarhet i Windows 11\u2026", "creation_timestamp": "2026-07-01T09:45:26.167098Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/3f9c3301-cefd-4f1a-a22e-ebba32004994/export"/>
    <published>2026-07-01T09:45:26.167098+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/a76399c7-769d-4254-ab3f-9ea3f25f6ccd/export</id>
    <title>a76399c7-769d-4254-ab3f-9ea3f25f6ccd</title>
    <updated>2026-07-05T10:53:08.468246+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "a76399c7-769d-4254-ab3f-9ea3f25f6ccd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-33825", "type": "seen", "source": "https://bsky.app/profile/ahmandonk.bsky.social/post/3mpkm4concw2q", "content": "\ud83d\udcf0 CISA: Celah BlueHammer di Microsoft Defender Kini Dieksploitasi Kelompok Ransomware\n\n\ud83d\udc49 Baca artikel lengkap di sini: https://ahmandonk.com/2026/07/01/cisa-bluehammer-cve-2026-33825-ransomware/\n\n#cisa #cve-2026-33825 #cybersecurity #microsoft #microsoftDefender #patchTuesday #privilegeEscalat", "creation_timestamp": "2026-07-01T03:45:08.643463Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/a76399c7-769d-4254-ab3f-9ea3f25f6ccd/export"/>
    <published>2026-07-01T03:45:08.643463+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/a7e07611-8c34-435c-9943-cb2a8a843d4e/export</id>
    <title>a7e07611-8c34-435c-9943-cb2a8a843d4e</title>
    <updated>2026-07-05T10:53:08.468339+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "a7e07611-8c34-435c-9943-cb2a8a843d4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33825", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mpkhxm4m5225", "content": "Top 3 CVE for last 7 days:\nCVE-2026-55200: 41 interactions\nCVE-2026-8461: 30 interactions\nCVE-2026-47729: 29 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-46817: 11 interactions\nCVE-2026-20245: 4 interactions\nCVE-2026-33825: 4 interactions\n", "creation_timestamp": "2026-07-01T02:30:56.232226Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/a7e07611-8c34-435c-9943-cb2a8a843d4e/export"/>
    <published>2026-07-01T02:30:56.232226+00:00</published>
  </entry>
</feed>
