The MTA Speaks| Prayer times| Weather Update| Gold Price
Follow Us: Facebook Instagram YouTube twitter

Microsoft Warns of Active Zero-Day Attacks

Microsoft Warns of Active Zero-Day Attacks

Post by : Bianca Haleem

Microsoft has confirmed that hackers are actively exploiting multiple critical zero-day vulnerabilities in its Windows operating system and Microsoft Office suite. The company has released urgent security patches as part of its February 2026 Patch Tuesday update.

In its latest security advisory, Microsoft revealed that at least six zero-day vulnerabilities were being actively used in real-world attacks. Zero-day vulnerabilities are security flaws that attackers exploit before a fix becomes widely available. These types of bugs are especially dangerous because users have little protection until updates are installed.

Critical Vulnerabilities Identified

One of the most serious flaws is a Windows Shell security feature bypass tracked as CVE-2026-21510. This vulnerability allows attackers to trick users into clicking malicious links or opening dangerous shortcuts. Once opened, harmful code can run without triggering normal Windows security warnings.

Other major vulnerabilities include:

  • A security bypass in Microsoft 365 and Office OLE (Object Linking and Embedding).

  • Internet Explorer component flaws that may allow remote code execution.

  • Weaknesses in Office document handling routines that attackers can exploit through phishing emails or malicious attachments.

These vulnerabilities affect core Windows components and Office applications that are widely used across businesses and homes worldwide.

February Patch Tuesday Fixes Around 60 Issues

Microsoft’s February 2026 Patch Tuesday update addresses nearly 60 vulnerabilities in total. However, the six actively exploited zero-day flaws are receiving the highest attention from cybersecurity experts.

Security professionals warn that attackers can exploit some of these bugs using simple social engineering tactics, such as phishing emails or fake download links. In many cases, only minimal user interaction is required.

Growing Pattern of Zero-Day Exploitation

Security analysts say this situation reflects a broader industry trend. Zero-day vulnerabilities are increasingly being used by advanced persistent threat (APT) groups soon after disclosure. In past Patch Tuesday cycles, Microsoft has even released emergency out-of-band updates after active exploitation was detected.

Similar emergency zero-day updates have recently been issued by other major technology companies, including Google and Apple, showing that the cybersecurity threat landscape remains highly active.

What Users and Organisations Should Do

Cybersecurity experts strongly advise:

  • Installing the latest Windows and Office updates immediately.

  • Enabling automatic updates.

  • Limiting administrator privileges.

  • Educating users about phishing risks.

  • Avoiding suspicious links and attachments.

Timely patching remains the most effective defense against zero-day attacks.

Microsoft has emphasized that applying the February 2026 security updates as soon as possible is critical to reducing risk.

Feb. 12, 2026 11:16 a.m. 683
Global News

More Trending News

Featured Stories

China Implements Export Restrictions on 40 Companies in Japan
July 1, 2026 6:07 p.m.
China enacts export controls on 40 Japanese firms amid rising tensions, citing security concerns linked to military capabilities.
Read More
Xi Asserts China's Role as a Blueprint for Developing Countries
July 1, 2026 5:51 p.m.
Xi Jinping promotes China's progress as a guide for developing nations and urges a stronger role in global affairs.
Read More
Tragic Roof Collapse Claims Lives of 14 Schoolchildren in Lahore, Pakistan
July 1, 2026 4:57 p.m.
Investigations commence following the tragic roof collapse of a Lahore tutoring center, claiming 14 young lives and injuring others.
Read More
Oman, CMA CGM Sign $400M Deal for Sohar Logistics Terminal
July 1, 2026 4:29 p.m.
Oman and CMA CGM signed a $400 million agreement to build a logistics terminal at Sohar Port, boosting trade, cargo capacity and regional connectivity
Read More
Etihad Airways Expands Flights as Travel Demand Surges
July 1, 2026 4:08 p.m.
Etihad Airways increases flights to Brussels and Kraków, makes Dhaka year-round, and extends Zanzibar and Palma services due to strong demand
Read More
Taal Volcano Erupts, Launching Ash 1,476 Feet Into the Air
July 1, 2026 3:49 p.m.
An eruption at Taal Volcano in the Philippines created an ash plume reaching 1,476 feet and generated unusual waves in the crater lake.
Read More
Oman Proposes Voluntary Strait of Hormuz Transit Fee, US Raises Concerns
July 1, 2026 3:48 p.m.
Oman has proposed a voluntary transit fee for ships crossing the Strait of Hormuz, while the US has raised objections and Iran insists it can charge for passage
Read More
Malaysian Tourists Injured in Thailand Blast Incident
July 1, 2026 3:24 p.m.
Two Malaysian tourists sustained injuries in a roadside blast in Thailand's Narathiwat during a suspected militant attack.
Read More
Ship Runs Aground in Strait of Hormuz Amid Iran Route Dispute
July 1, 2026 3:15 p.m.
A foreign container ship ran aground in the Strait of Hormuz after not following Iran's approved route as US-Iran talks continued in Qatar
Read More
Sponsored
Trending News