Threat Intelligence Report

January 2026 CVE Landscape: 23 Critical Vulnerabilities Mark 5% Increase, APT28 Exploits Microsoft Office Zero-Day

📅 February 24, 2026 📰 www.recordedfuture.com 🔍 6 CVE(s) referenced

January 2026 saw a surge in critical vulnerabilities—driven by Russian APT28’s active exploitation of a Microsoft Office zero-day and multiple authentication bypass flaws—highlighting the urgent need for enterprises to patch and monitor communication and management platforms against sophisticated state-sponsored and criminal threat actors.

vendor

CVE-2026-1340, CVE-2026-23550, CVE-2026-21509, CVE-2026-23760, CVE-2026-23800, CVE-2026-1281

🔐 Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

📊 Visual Mindmap

🎯 IOC Extraction

⚔️ MITRE ATT&CK TTPs

📦 STIX 2.1 Bundle