APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday

Updated on March 2, 2026

A recently disclosed security flaw patched by Microsoft may have been exploited by the Russia-linked state-sponsored threat actor known as APT28, according to new findings from Akamai.
The vulnerability in question is CVE-2026-21513 (CVSS score: 8.8), a high-severity security feature bypass affecting the MSHTML Framework.
“Protection mechanism failure in MSHTML Framework allows an unauthorized…

Read the rest of the story at Read More

Source: The Hacker News

February 9, 2026 Uncategorized

TeamPCP Worm Exploits Cloud Infrastructu...

March 13, 2025 Uncategorized

Microsoft Warns of ClickFix Phishing Cam...

May 3, 2025 Uncategorized

APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday

Related posts

TeamPCP Worm Exploits Cloud Infrastructu...

Microsoft Warns of ClickFix Phishing Cam...

Malicious Go Modules Deliver Disk-Wiping...

Leave a Comment Cancel reply

Recent News

New Chrome Vulnerability Let Malicious Extensions Escalate Privileges via Gemini Panel

Google Develops Merkle Tree Certificates to Enable Quantum-Resistant HTTPS in Chrome

⚡ Weekly Recap: SD-WAN 0-Day, Critical CVEs, Telegram Probe, Smart TV Proxy SDK and More

How to Protect Your SaaS from Bot Attacks with SafeLine WAF

APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday

North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT

ClawJacked Flaw Lets Malicious Sites Hijack Local OpenClaw AI Agents via WebSocket

Thousands of Public Google Cloud API Keys Exposed with Gemini Access After API Enablement

Pentagon Designates Anthropic Supply Chain Risk Over AI Military Dispute

DoJ Seizes $61 Million in Tether Linked to Pig Butchering Crypto Scams