APT28 Exploits MSHTML Zero-Day Vulnerability in Windows

APT28 Exploits MSHTML Zero-Day Vulnerability in Windows

First seen 2 Mar 2026, 16:11 UTC GbhackersCyberpressCybersecuritynewsScworld 80% similarity 94.3

Article Content

Browse articles
ThreatCluster

APT28 has actively exploited a zero-day vulnerability in MSHTML affecting all Windows versions, which has a CVSS score of 8.8. The vulnerability allows for security bypass and poses significant risks to users. A patch was released in February 2026 to address this issue.

ThreatCluster AI

Timeline

2026-02-01
Patch released for MSHTML zero-day vulnerability
2026-03-02
APT28 exploits MSHTML zero-day vulnerability

Community

Browse all →