Patch Tuesday: February 2026 (Expel’s version)

**Patch Tuesday — February 10, 2026:** Microsoft released fixes for 59 CVEs, including six actively exploited zero-days now listed in CISA's KEV; the report highlights three high-priority flaws (Windows Shell SFB CVE-2026-21510, MSHTML SFB CVE-2026-21513, and RDS privilege escalation CVE-2026-21533) and urges immediate patching. It also analyzes NTLM's longstanding weaknesses and outlines Microsoft's plan to disable NTLM by default in 2026 with recommended phases for auditing, hardening (SMB signing, EPA), and remediation or migration to Kerberos/modern identity providers.