Windows 'MiniPlasma' Exploit: SYSTEM Access, Proof-of-Concept Public
Unpatched flaw in Windows Cloud Filter driver hands SYSTEM access to attackers. Microsoft's radio silence continues.
A new Windows flaw, dubbed 'MiniPlasma,' is out there. It lets attackers snag SYSTEM-level access even on fully patched machines. Cybersecurity researcher Chaotic Eclipse just dropped the exploit publicly. It zeros in on a bug in the Windows Cloud Filter driver, specifically the 'HsmOsBlockPlaceholderAccess' routine. Here's the kicker: James Forshaw of Google Project Zero first reported this vulnerability back in 2020. It was supposedly patched. But it's back.
A Scar Reopened
This MiniPlasma exploit? It points to a worrying lapse in Microsoft's patch management. Chaotic Eclipse says the 2020 issue, CVE-2020-17103, still works. Microsoft claimed a fix in December 2020. Yet BleepingComputer and other security pros confirm the exploit runs just fine on the latest Windows 11 updates.
It lets attackers create arbitrary registry keys, totally bypassing access checks. Think about that. This can bump a regular user's privileges straight up to SYSTEM level. Pretty big security risk, wouldn't you say?
Not Their First Rodeo
This isn't Chaotic Eclipse's first rodeo. The researcher has dropped a series of zero-day vulnerabilities. It's a protest, actually, against how Microsoft handles bug bounties and vulnerability disclosures. Some of these, like BlueHammer, RedSun, and UnDefend, have even been actively exploited after they went public.
- BlueHammer: A local privilege escalation flaw.
- RedSun: Another escalation bug. Microsoft, for its part, patched this one quietly.
- UnDefend: A tool to hit Windows Defender with a Denial of Service attack.
Europe's Stake
Europe's cybersecurity scene? It's feeling this keenly. Windows platforms are everywhere, across pretty much every industry. And GDPR? That adds another layer of pain. Data breaches from these kinds of flaws could mean hefty fines. Remember when software giants faced huge scrutiny and penalties over security oversights? Yeah, like that.
So, What Now?
For you, the user, or you, the IT admin? This exploit means you need to be on your toes. Vigilance. Proactive security. Update your systems. Get extra security tools. Seriously. It's about mitigating those potential risks. And keep an eye on Microsoft. See what they do about patches.
The Big Questions
- Microsoft hasn't said a word about MiniPlasma. Not officially, anyway.
- No one knows if a new patch is coming. Or when.
- How much is this actually being exploited out there? Pure speculation right now.
Why It Matters
The MiniPlasma exploit? It really chips away at trust in Microsoft's patching. A vulnerability that was supposedly fixed, now back again. Doesn't exactly inspire confidence in their security processes, does it? Threats keep evolving. Microsoft needs solid, transparent patch management. It's about user trust. It's about data integrity. Simple as that.
Discuss this story
Got a take, a correction, or a follow-up tip? Reply where you read — we read everything.
Found an error? File a correction at /corrections. Substantive corrections are logged publicly.
One short email. The most important Security news, fact-checked, no fluff. Free, unsubscribe anytime.
More from Security

Apple's Rare Third macOS RC: Unpacking Security Concerns
Byte-Pulse explores the implications of Apple's unusual third Release Candidate for macOS updates, examining the severity of unannounced security fixes and their impact on European users

Google’s Legal Battle Against AI-Driven Cybercrime: Examining Outsider Enterprise
Google's lawsuit against Outsider Enterprise exposes differences in victim counts and sheds light on AI's role in cybercrime.

iOS 26.5 Update Addresses Over 50 Security Vulnerabilities—Update Now
Apple's iOS 26.5 fixes over 50 security flaws. Update your iPhone now to stay secure.

Malware Disguised as OpenAI Found on Hugging Face
A fake OpenAI repo on Hugging Face pushed malware disguised as AI tools, targeting Windows users with info-stealing tactics.
The Byte-Pulse Newsroom is the editorial system that produces Byte-Pulse's daily tech news coverage. Each story is cross-referenced across 3+ independent outlets, drafted with AI assistance by the newsroom system (Drafter → Editor → Fact-Checker → Polisher), and reviewed by Serhat Er, Editor-in-Chief, before publication. We disclose AI augmentation openly. Editorial accountability stays with the named editor on every article. Tips: editorial@byte-pulse.net.
Don’t miss these

Ugreen 145W Power Bank: Deconstructing the 'Lowest Price' Hype
We dissect Ugreen's 145W power bank deal, contrasting its advertised 'lowest price in months' with the broader context of consumer electronics pricing and real-world value for European users

Sony's Digital Shift: 'Consumer Preference' or Corporate Control?
Byte-Pulse examines Sony's shift to an all-digital future, community backlash, and implications for gamers and the industry.

Nothing Phone (4b): A Mid-Range Ambition in a Crowded European Market
Nothing's Phone (4b) merges familiar aesthetics with mid-range specs, raising questions about its European market strategy and true competitive edge.
Tesla Model 3 vs Polestar 2: Choosing Your Next EV Wisely
A balanced breakdown of Tesla Model 3 and Polestar 2. Compare specs, performance, design, and more to find the right EV for you.

AI Chatbots Duel for 2026 World Cup Champion Prediction
Can artificial intelligence really predict the beautiful game? We put the leading AI chatbots to the test, feeding them the same prompts for the 2026 World Cup. Here's who came out on top, and how they got there.

Apple's 2027 Roadmap: Unpacking Supply Strains and Strategic Positioning
Byte-Pulse analyzes Apple's rumored 2027 product plans, scrutinizing the strategic implications of a redesigned MacBook Pro and accelerated M7 chip amidst supply chain pressures