Microsoft’s February 2026 Patch Tuesday fixed 59 flaws, but CVE-2026-21513 in the MSHTML framework stole the spotlight. This security bypass vulnerability hit all Windows versions, earned a CVSS score of 8.8, and saw active exploitation in the wild by APT28, Russia’s state-sponsored hackers. Akamai researchers used PatchDiff-AI to dissect the patch and link it to […] The post APT28 Exploits MSHTML Zero-Day Ahead of February 2026 Patch Tuesday appeared first on Cyber Security News.