Security Articles

Stay ahead of emerging threats with expert analysis, vulnerability reports, and cybersecurity insights.

All Articles Advisory Cyber Attack Data Breach Exploit Malware Threat Actor Vulnerability

Severity: All Critical High Medium Low

2 articles found

highCVE AdvisoryVulnerability

Russia's APT28 Was Already Exploiting That Windows MSHTML Flaw Before Microsoft Patched It

Akamai confirmed APT28 exploited CVE-2026-21513 (CVSS 8.8) in Windows MSHTML before Microsoft's February patch. The attack uses crafted LNK files to bypass Mark-of-the-Web and IE Enhanced Security via ShellExecuteExW invocation. Samples linked to APT28 infrastructure appeared on VirusTotal two weeks before the fix.

By DannyRead Full Article

CVE-2026-21509

high

CVSS 7.8

CVE AdvisoryVulnerabilityCVE-2026-21509 CVSS 7.8 •Feb 3, 2026

APT28 Weaponized That Office Zero-Day in Three Days Flat

Russia's APT28 began exploiting Microsoft Office CVE-2026-21509 just 72 hours after disclosure, targeting Ukraine, Slovakia, and Romania with email-stealing malware and Covenant implants.

Stay Informed

Subscribe to our newsletter and get the latest security insights delivered to your inbox.