APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday  – The Hacker News

Posted on By Joe-W
Attack Feeds

A recently disclosed security flaw patched by Microsoft may have been exploited by the Russia-linked state-sponsored threat actor known as APT28, according to new findings from Akamai.
The vulnerability in question is CVE-2026-21513 (CVSS score: 8.8), a high-severity security feature bypass affecting the MSHTML Framework.
“Protection mechanism failure in MSHTML Framework allows an unauthorized  –

Read More  – The Hacker News 

You may also like

AttackFeed by Joe Wagner | Attack on axios software developer tool threatens widespread compromises  - CyberScoop
Attack Feeds
Attack on axios software developer tool threatens widespread compromises  – CyberScoop
March 31, 2026
AttackFeed by Joe Wagner | Massive “Low and Slow” DDoS Attack Hits Platform With 2.45 Billion in 5 Hours  - Hackread – Cybersecurity News, Data Breaches, AI and More
Attack Feeds
Massive “Low and Slow” DDoS Attack Hits Platform With 2.45 Billion in 5 Hours  – Hackread – Cybersecurity News, Data Breaches, AI and More
May 6, 2026
AttackFeed by Joe Wagner | How to Reduce Phishing Exposure Before It Turns into Business Disruption  - The Hacker News
Attack Feeds
How to Reduce Phishing Exposure Before It Turns into Business Disruption  – The Hacker News
May 18, 2026
AttackFeed by Joe Wagner | Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian Orgs  - The Hacker News
Attack Feeds
Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian Orgs  – The Hacker News
February 13, 2026