Security, AI, and other curiosities
APT28 exploits incomplete Windows Shell patch for zero-click NTLM coercion (CVE-2026-32202); Entra ID Agent Administrator role enables service principal takeover.