Microsoft Patches YellowKey, GreenPlasma, and MiniPlasma Zero-Days

June 2026 Patch Tuesday fixes three actively exploited Windows zero-days — YellowKey and GreenPlasma (local SYSTEM privilege escalation) and MiniPlasma (BitLocker bypass) — that allowed attackers to gain SYSTEM privileges or bypass drive encryption on fully patched systems prior to the update; the report also covers the public disclosure dispute that led to early PoC releases and provides mitigation guidance to apply patches, prioritize endpoints, review BitLocker configs, and monitor EDR telemetry.