APT28 Uses Microsoft Office CVE-2026-21509 in Espionage-Focused Malware Attacks

Updated on February 3, 2026

The Russia-linked state-sponsored threat actor known as APT28 (aka UAC-0001) has been attributed to attacks exploiting a newly disclosed security flaw in Microsoft Office as part of a campaign codenamed Operation Neusploit.
Zscaler ThreatLabz said it observed the hacking group weaponizing the shortcoming on January 29, 2026, in attacks targeting users in Ukraine, Slovakia, and Romania, three…

Read the rest of the story at Read More

Source: The Hacker News

October 11, 2025 Uncategorized

Hackers Turn Velociraptor DFIR Tool Into...

June 10, 2025 Uncategorized

Rare Werewolf APT Uses Legitimate Softwa...

January 23, 2025 Uncategorized

APT28 Uses Microsoft Office CVE-2026-21509 in Espionage-Focused Malware Attacks

Related posts

Hackers Turn Velociraptor DFIR Tool Into...

Rare Werewolf APT Uses Legitimate Softwa...

QakBot-Linked BC Malware Adds Enhanced D...

Leave a Comment Cancel reply

Recent News

Docker Fixes Critical Ask Gordon AI Flaw Allowing Code Execution via Image Metadata

[Webinar] The Smarter SOC Blueprint: Learn What to Build, Buy, and Automate

Hackers Exploit Metro4Shell RCE Flaw in React Native CLI npm Package

When Cloud Outages Ripple Across the Internet

APT28 Uses Microsoft Office CVE-2026-21509 in Espionage-Focused Malware Attacks

Mozilla Adds One-Click Option to Disable Generative AI Features in Firefox

Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking Group

Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw Users

OpenClaw Bug Enables One-Click Remote Code Execution via Malicious Link

Microsoft Begins NTLM Phase-Out With Three-Stage Plan to Move Windows to Kerberos