Cyber Threat Report: April 2026

Critical WebLogic RCE Vulnerability Exploited in the Wild

Urgent CISA Directive: Patch Critical Ivanti EPMM Vulnerability CVE-2026-1340 by April 11

Russian Hackers Target Routers to Steal Sensitive Data

DPRK-Linked Malware Targeting Job Seekers via Wellfound

Critical RCE Vulnerability in Marimo Exploited Within 10 Hours of Disclosure

Iranian APTs Target 5,219 Exposed Rockwell PLCs in U.S. Critical Infrastructure

Escalating Cyber Warfare Threats Amid Geopolitical Tensions

Critical Vulnerability in Ninja Forms Plugin Exposes 50,000 WordPress Sites to RCE

APT28 Exploits Vulnerable Routers for Global DNS Hijacking Campaign

Operation TrueChaos: Exploitation of TrueConf Zero-Day Vulnerability

APT41 Exploits Cloud Services with New Zero-Detection ELF Backdoor

MuddyWater's Operation Olalampo Targets MENA Region with New Malware