Inside the Fix: Analysis of In-the-Wild Exploit of CVE-2026-21513
#CVE_2026_21513 #APT28
https://www.akamai.com/blog/security-research/2026/feb/inside-the-fix-cve-2026-21513-mshtml-exploit-analysis
T
threatcodex@infosec.exchange
@threatcodex@infosec.exchange
Posts
-
Inside the Fix: Analysis of In-the-Wild Exploit of CVE-2026-21513#CVE_2026_21513 #APT28 https://www.akamai.com/blog/security-research/2026/feb/inside-the-fix-cve-2026-21513-mshtml-exploit-analysis -
Starkiller Phishing Kit: Why MFA Fails Against Real-Time Reverse Proxies#Starkiller https://bytearchitect.io/network-security/Starkiller-Phishing-Kit-Why-MFA-Fails-Against-Real-Time-Reverse-Proxies/Starkiller Phishing Kit: Why MFA Fails Against Real-Time Reverse Proxies
#Starkiller
https://bytearchitect.io/network-security/Starkiller-Phishing-Kit-Why-MFA-Fails-Against-Real-Time-Reverse-Proxies/ -
Detecting and preventing distillation attacks#Claude #DeepSeek #MoonshotAI #MiniMax https://www.anthropic.com/news/detecting-and-preventing-distillation-attacksDetecting and preventing distillation attacks
#Claude #DeepSeek #MoonshotAI #MiniMax
https://www.anthropic.com/news/detecting-and-preventing-distillation-attacks -
Reddit fined $20 million by UK for not effectively checking users’ ages#Reddit https://therecord.media/reddit-children-age-checks-uk-ico-fineReddit fined $20 million by UK for not effectively checking users’ ages
#Reddit
https://therecord.media/reddit-children-age-checks-uk-ico-fine -
Operation MacroMaze: new APT28 campaign using basic tooling and legit infrastructure#APT28 https://lab52.io/blog/operation-macromaze-new-apt28-campaign-using-basic-tooling-and-legit-infrastructure/Operation MacroMaze: new APT28 campaign using basic tooling and legit infrastructure
#APT28
https://lab52.io/blog/operation-macromaze-new-apt28-campaign-using-basic-tooling-and-legit-infrastructure/ -
EventLog-in: Propagating With Weak Credentials Using the Eventlog Service in Microsoft Windows (CVE-2025-29969)#CVE_2025_29969 https://www.safebreach.com/blog/safebreach_labs_discovers_cve-2025-29969/EventLog-in: Propagating With Weak Credentials Using the Eventlog Service in Microsoft Windows (CVE-2025-29969)
#CVE_2025_29969
https://www.safebreach.com/blog/safebreach_labs_discovers_cve-2025-29969/ -
Kimwolf Botnet Swamps Anonymity Network I2P#Kimwolf https://krebsonsecurity.com/2026/02/kimwolf-botnet-swamps-anonymity-network-i2p/Kimwolf Botnet Swamps Anonymity Network I2P
#Kimwolf
https://krebsonsecurity.com/2026/02/kimwolf-botnet-swamps-anonymity-network-i2p/ -
New Keenadu backdoor found in Android firmware, Google Play apps#Keenadu https://www.bleepingcomputer.com/news/security/new-keenadu-backdoor-found-in-android-firmware-google-play-apps/New Keenadu backdoor found in Android firmware, Google Play apps
#Keenadu
https://www.bleepingcomputer.com/news/security/new-keenadu-backdoor-found-in-android-firmware-google-play-apps/ -
Notepad++ v8.9.2 release - Double‑Lock Update Security#Notepad++ https://notepad-plus-plus.org/news/v892-released/Notepad++ v8.9.2 release - Double‑Lock Update Security
#Notepad++
https://notepad-plus-plus.org/news/v892-released/ -
Not Safe for Politics - Cellebrite Used on Kenyan Activist and Politician Boniface Mwangi#Cellebrite https://citizenlab.ca/research/cellebrite-used-on-kenyan-activist-and-politician-boniface-mwangi/Not Safe for Politics - Cellebrite Used on Kenyan Activist and Politician Boniface Mwangi
#Cellebrite
https://citizenlab.ca/research/cellebrite-used-on-kenyan-activist-and-politician-boniface-mwangi/ -
LummaStealer Is Getting a Second Life Alongside CastleLoader#LummaStealer #CastleLoader https://www.bitdefender.com/en-us/blog/labs/lummastealer-second-life-castleloaderLummaStealer Is Getting a Second Life Alongside CastleLoader
#LummaStealer #CastleLoader
https://www.bitdefender.com/en-us/blog/labs/lummastealer-second-life-castleloader -
Old-School IRC, New Victims: Inside the Newly Discovered SSHStalker Linux Botnet#SSHStalker https://flare.io/learn/resources/blog/old-school-irc-new-victims-inside-the-newly-discovered-sshstalker-linux-botnetOld-School IRC, New Victims: Inside the Newly Discovered SSHStalker Linux Botnet
#SSHStalker
https://flare.io/learn/resources/blog/old-school-irc-new-victims-inside-the-newly-discovered-sshstalker-linux-botnet -
Please Don’t Feed the Scattered Lapsus ShinyHunters#ScatteredLapsusShinyHunters https://krebsonsecurity.com/2026/02/please-dont-feed-the-scattered-lapsus-shiny-hunters/Please Don’t Feed the Scattered Lapsus ShinyHunters
#ScatteredLapsusShinyHunters
https://krebsonsecurity.com/2026/02/please-dont-feed-the-scattered-lapsus-shiny-hunters/ -
Technical Analysis of GuLoader Obfuscation Techniques#Guloader https://www.zscaler.com/blogs/security-research/technical-analysis-guloader-obfuscation-techniquesTechnical Analysis of GuLoader Obfuscation Techniques
#Guloader
https://www.zscaler.com/blogs/security-research/technical-analysis-guloader-obfuscation-techniques