Vulnerability Management , Patch/Configuration Management , Threat Intelligence New Windows flaw stems from incomplete fix for APT28-exploited bugs April 29, 2026 Share By SC Staff (Adobe Stock) SecurityWeek reports that Microsoft's deficient February patch for the high-severity Windows SmartScreen and Shell prompt bypass bug CVE-2026-21510, which has been exploited by the Russia-linked advanced persistent threat group APT28, has resulted in the new authentication coercion zero-click bug, tracked as CVE-2026-32202. Harnessing CVE-2026-32202, which has been addressed by Microsoft as part of this month's Patch Tuesday fixes, could result in credential theft without requiring any user interaction, an analysis from Akamai revealed. Such an issue stems from the patch's failure to halt the authentication of victim machines to the attacker's server, even if it mitigated the remote code execution path. Meanwhile, APT28, also known as Fancy Bear, Sofacy, Forest Blizzard, and GruesomeLarch, was noted to have leveraged trojanized LNK files exploiting CVE-2026-21510 alongside the MSHTML security feature bypass defect, tracked as CVE-2026-21513, in a December attack campaign aimed at Ukraine and European Union member states. Abuse of the Windows shell namespace parsing mechanism allowed APT28 to load a DLL without proper network zone validation, said Akamai researchers. SC Staff Related AI/ML Wiz launches Red Agent for AI vulnerability simulation SC Staff April 29, 2026 The expansion adds support for Databricks and studio environments, including AWS Agentcore, Gemini Enterprise Agent Platform, and Salesforce Agentforce, addressing the risk created when autonomous agents gain access to live data. Threat Intelligence TrueConf vulnerabilities weaponized in pro-Ukrainian hacktivist attacks against Russia SC Staff April 29, 2026 Attacks chaining a critical vulnerability and a pair of high-severity flaws impacting the TrueConf video conferencing software have been launched by pro-Ukrainian hacktivist operation PhantomCore to infiltrate Russian networks since September, The Hacker News reports. AI/ML AI adoption brings back old security gaps, says Mandiant SC Staff April 28, 2026 Infosecurity Magazine reports that Mandiant, a cybersecurity company and subsidiary of Google, has warned firms that reckless integration of artificial intelligence into their systems could lead to new security flaws and the re-emergence of vulnerabilities that were identified and resolved in the past. Get daily email updates SC Media's daily must-read of the most current and pressing daily news Business Email By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy . Subscribe Related Terms Botnet Brute Force Bug Covert Channels Deauthentication Attack Deepfake Defacement Denial of Service Distributed Scans DumpSec You can skip this ad in 5 seconds