Vulnerabilities5 min read
APT28 Exploiting Windows Shell Flaw to Steal NTLM Credentials
Russian state hackers weaponize CVE-2026-32202, an incomplete patch for Windows Shell that enables zero-click NTLM hash theft. Microsoft confirms active exploitation after Akamai discovers the bypass.
Marcus ChenApr 28, 2026