#apt28

Analysis · May 1, 2026 · PatchDay Alert Editorial Desk

A 4.3 that mattered: the 13-day gap between patch and exploitation flag

Microsoft patched CVE-2026-32202 on April 14 without marking it exploited. APT28 had been using it since at least December. The gap between those two facts is where triage models break.