Sands Internet Storm Center Stormcast February 12, 2026 Edition Covers Four Security Topics

The February 12, 2026 edition of the Sands Internet Storm Center Stormcast covers four security topics. Firstly, the use of the Windows Subsystem for Linux by malware. Attackers are exploiting this tool present in recent versions of Windows, often enabled but unused by users. An example shows JavaScript code checking the availability of WSL before exploiting it to hide malicious artifacts. Secondly, Apple has released patches addressing 71 vulnerabilities. One actively exploited vulnerability was discovered during a targeted and limited incident. The updates cover macOS 26, 15, and 14. Thirdly, Adobe patched nine products on Patch Tuesday, with critical vulnerabilities allowing arbitrary code execution through the opening of malicious files. Fourthly, a vulnerability in Microsoft Notepad allows exploitation via markdown files containing URLs with malicious protocols, which can trigger arbitrary code execution. Proof of concepts are available.