The Hacker News

APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday

APT28 exploited CVE-2026-21513, an MSHTML zero-day (CVSS 8.8), using malicious LNK files to bypass security controls and execute code.
Hosted on MSN

Microsoft's February patch fixes 6 zero-days - but some Windows users shouldn't update yet

The February update continues to refresh Secure Boot certificates. The update also fixes a number of feature and security glitches. Let's hope this month's update is less buggy than the one in January ...
Krebs on Security

Patch Tuesday, October 2025 ‘End of 10’ Edition

Microsoft today released software updates to plug a whopping 172 security holes in its Windows operating systems, including at least two vulnerabilities that are already being actively exploited.

Microsoft Confirms Windows Is Under Attack — Update Now

Attackers have not waited for Exploit Wednesday; the Microsoft Windows zero-day attacks have already started. Here’s what you need to know and do.
Bleeping Computer

Windows 11 KB5077181 fixes boot failures linked to failed updates

The company now says the issue is fully resolved in the Windows 11 KB5077181 update released during the February 2026 Patch Tuesday and later updates. "This issue is fully resolved in the Windows ...