The window to patch vulnerabilities is shrinking rapidly.

Ars Technica is known for its  coverage of technology-related news and analysis, ranging from scientific breakthroughs to the latest gadgets and gaming developments. Readers can learn about emerging technologies, industry trends, and the societal impact of technological advancements through detailed articles and reviews.

Ars Technica

Russian state-sponsored hackers (APT28/Fancy Bear) exploited a critical Microsoft Office vulnerability (CVE-2026-21509) within 48 hours of its emergency patch release. The sophisticated attack targeted diplomatic, maritime, and transport organizations across nine countries, primarily in Eastern Europe. The campaign used encrypted, memory-resident exploits and novel backdoor implants delivered via spear phishing from compromised government accounts, with command and control hosted on legitimate cloud services to evade detection.

Microsoft releases urgent Office patch. Russian-state hackers pounce.

How Lighting Design In The Callisto Protocol Elevates The Horror