Microsoft Rushes to Patch Critical Windows, Office Security Bugs Actively Exploited by Hackers

• Microsoft released urgent security updates for Windows and Office due to active exploitation of serious vulnerabilities by hackers.
• These zero-day flaws allow attackers to compromise systems with minimal user interaction, sometimes just by clicking a malicious link or opening a crafted Office file.
• Technical details on exploiting the bugs have been published, increasing the risk of further attacks.
• One critical flaw, CVE-2026-21510, in Windows shell, allows remote code execution and bypasses SmartScreen protection.
• Users are urged to install updates immediately as public disclosure could accelerate attacks on unpatched systems.