A New Windows Zero-Day Lets Attackers Take Full Control

**Executive summary:** The report summarizes a newly disclosed Windows zero-day named RedSun that enables local privilege escalation to SYSTEM via Microsoft Defender's handling of cloud-synced files, while also covering a Europol DDoS-for-hire disruption and Microsoft RDP security prompt updates; it stresses that post-compromise escalation is the key threat and recommends detection, least-privilege enforcement, and improved endpoint visibility.