Microsoft Defender Zero-Days: RedSun and UnDefend Still Unpatched
Three Microsoft Defender zero-days are actively exploited; RedSun and UnDefend remain unpatched. What broke, how attackers chain them, what to do now.
Vulnerability
ActiveMQ CVE-2026-34197: 13-Year-Old Jolokia RCE Under Attack
CVE-2026-34197 is a 13-year-old Apache ActiveMQ RCE that Claude helped surface. CISA added it to KEV on April 16 amid active Jolokia endpoint attacks.