:

WINDOWS 'MINIPLASMA' ZERO-DAY GRANTS SYSTEM ACCESS

SECURITY DESK2 MIN READ
SUN, MAY 17, 2026

■ AI-SUMMARIZED FROM 1 SOURCE ▸ TIMELINE

A cybersecurity researcher has released a proof-of-concept exploit for a Windows privilege escalation zero-day called "MiniPlasma" that enables attackers to gain SYSTEM privileges on fully patched Windows systems.

The exploit, disclosed publicly, demonstrates a critical vulnerability that bypasses Windows security protections even on up-to-date installations. Attackers leveraging MiniPlasma can escalate from limited user permissions to SYSTEM level access, the highest privilege tier on Windows machines. Microsoft has not yet released a patch addressing the vulnerability. The public release of working exploit code significantly increases the risk window for affected users and organizations, as malicious actors now have readily available tools to exploit the flaw. Privilege escalation vulnerabilities are particularly dangerous because they often serve as a second stage in attack chains. An attacker might initially gain limited access through phishing, weak credentials, or another vulnerability, then use MiniPlasma to elevate privileges and establish full system control. The vulnerability affects Windows systems across multiple versions. Organizations running fully patched systems believed to be secure remain vulnerable until Microsoft issues and deploys a fix. Security researchers recommend monitoring systems for exploitation attempts and implementing additional access controls where possible. Administrators should prioritize patching once Microsoft releases a security update. The disclosure follows a pattern of increasing zero-day releases by security researchers, sometimes to highlight Microsoft's patch cycle delays. While researchers argue public disclosure pressures vendors to respond faster, it simultaneously exposes all users to active exploitation risk. This incident underscores the ongoing challenge Windows users face: the gap between vulnerability discovery and patch availability, combined with the widespread practice of releasing proof-of-concept code, creates a critical exposure period for enterprise and consumer systems alike.

■ SOURCES

Bleeping Computer

■ SUMMARY WRITTEN BY AI FROM THE LINKS ABOVE

■ MORE FROM THE SECURITY DESK

Microsoft has released a patch for a zero-day vulnerability in Windows Defender that could allow attackers to exhaust hard disk space. The flaw was discovered and reported by security researcher NightmareEclipse.

1H AGOIndustry Desk

A software defect from 2006 triggered a cascading network failure that knocked out Telstra's national phone service Wednesday morning. The bug, related to daylight savings time processing, created a 'digital domino chain' that locked customers out across the country.

1H AGOIndustry Desk

The EU Parliament is advancing legislation that would require tech companies to scan for child sexual abuse material (CSAM), reviving a proposal rejected in March. End-to-end encrypted services like WhatsApp would be exempt from the requirements.

2H AGOIndustry Desk

Hackers compromised the Injective Labs SDK repository on GitHub and published a malicious package to npm that steals cryptocurrency wallet private keys and seed phrases from developers.

2H AGODev Desk

■ SUBSCRIBE TO THE DAILY BRIEF

ONE EMAIL, 5 STORIES, 06:00 UTC. UNSUBSCRIBE ANYTIME.