Ukraine's Computer Emergency Response Team (CERT) says that Russian hackers are exploiting CVE-2026-21509, a recently patched vulnerability in multiple versions of Microsoft Office.

A hole in Microsoft Office is being exploited by bad actors, including Russian hackers targeting Ukraine's government.

Russia-linked hacking group Fancy Bear is exploiting a brand-new vulnerability in Microsoft Office, CERT-UA says ...

APT28 exploited a Microsoft Office flaw to deliver MiniDoor and Covenant Grunt malware in targeted attacks across Ukraine and ...

APT28's attacks use specially crafted Microsoft Rich Text Format (RTF) documents to kick off a multistage infection chain to deliver malicious payloads.

Ukraine’s CERT says the bug went from disclosure to active exploitation in days Russia-linked attackers are already ...

The hosting provider's compromise allowed attackers to deliver malware through tainted software updates for six months.

Two malware campaigns weaponize open-source software to target executives and cloud systems, combining social engineering ...

In my previous post, I walked through how disconnected MCP servers and AI agents create a growing blind spot in enterprise ...

Cybersecurity investigators have identified a new cyberattack campaign connected to the Russia-linked hacking group APT28, ...

Rapid7 links China-linked Lotus Blossom to a 2025 Notepad++ hosting breach that delivered the Chrysalis backdoor via hijacked ...

A coordinated campaign has been observed targeting a recently disclosed critical-severity vulnerability that has been present in the GNU InetUtils telnetd server for 11 years. The security issue is ...