The Hacker News

APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday

APT28 exploited CVE-2026-21513, an MSHTML zero-day (CVSS 8.8), using malicious LNK files to bypass security controls and execute code.
Krebs on Security

Patch Tuesday, October 2025 ‘End of 10’ Edition

Microsoft today released software updates to plug a whopping 172 security holes in its Windows operating systems, including at least two vulnerabilities that are already being actively exploited.
Hosted on MSN

Microsoft's February patch fixes 6 zero-days - but some Windows users shouldn't update yet

The February update continues to refresh Secure Boot certificates. The update also fixes a number of feature and security glitches. Let's hope this month's update is less buggy than the one in January ...

Microsoft Confirms Windows Is Under Attack — Update Now

Attackers have not waited for Exploit Wednesday; the Microsoft Windows zero-day attacks have already started. Here’s what you need to know and do.

May Patch Tuesday to fix 23 security holes, affects Microsoft Office and Windows

This months Patch Tuesday is scheduled for May 8th and will bring us seven bulletins that address 23 vulnerabilities in Microsoft Office, Windows, Silverlight and the .NET framework which could allow ...