[Microsoft Defender Vulnerability Allows Bypassing Authentication and Uploading Malicious Files] According to a post shared by SlowMist Technology's Chief Information Security Officer 23pds, a vulnerability exists in Microsoft Defender that allows attackers to bypass authentication and upload malicious files. A critical vulnerability was discovered in the network communication between Microsoft Defender for Endpoint (DFE, i.e., Microsoft's endpoint protection) and its cloud service. This vulnerability enables attackers, after compromising the system, to bypass authentication, forge data, leak sensitive information, and even upload malicious files into investigation packages.