Microsoft has fixed the RoguePlanet zero-day in Defender via an update to the Malware Protection Engine. The patch closes the latest vulnerability publicly disclosed by researcher Nightmare Eclipse, who has sparred with the company over its handling of bug reports all year.

Microsoft addressed the bug outside its regular Patch Tuesday cycle.
RoguePlanet marks the seventh zero-day publicly disclosed by Nightmare Eclipse since April.
The quiet engine update rather than a Patch Tuesday release suggests Microsoft treated the race condition as a targeted Defender fix, though the lack of technical detail leaves defenders without clear guidance on detection or mitigation steps.
Tap a lens to see what this story means for you.
Reader-supported · Daily Brief
Daily brief at 7 AM ET. Top tech stories, every morning. Sourced and fact-checked.
See what’s happening right now
The Feed runs all day — short, verified briefs the moment they break.
Open the FeedFollow @thecircuitry_
Every story we publish, as it happens. No noise between.
Reader-supported
The Circuitry is a passion project I've always wanted to build, and I love the work behind it.
Running it costs real money. APIs, hosting, time. To keep improving the site and growing this into something useful for everyone, those costs have to be covered.
Any contribution is appreciated. If not, no pressure. Thanks for reading.
Toyota is pushing back output of its initial three-row battery-electric SUV, the 2027 Highlander BEV, and will keep the existing gasoline and hybrid Highlander models on sale longer while three new electric SUVs gain U.S. traction.
OpenAI has now made its GPT-5.6 family of models public at the same time it introduced the ChatGPT Work agent, arriving two days after Anthropic expanded its competing Claude Cowork service. The overlapping launches highlight an intensifying race between the companies to equip non-technical staff with automated document tools.
Microsoft is expanding the number of fixes delivered in each Patch Tuesday release for Windows 11 by using AI to surface potential security issues earlier. The adjustment comes amid rising AI-assisted vulnerability hunting and exploitation by both attackers and security researchers.