All Reports
Cyber Threat Report: W/C April 20, 2026
Weekly report · 381 clusters · 2418 articles
381
Threat Clusters
2418
Articles Analyzed
53.9
Avg Threat Score
141
Rising Entities
Top Threats
State-Sponsored Phishing Campaign Targets Signal Users
80.0
2 articles
Critical Buffer Overflow Vulnerability in Silex Devices (CVE-2026-32956)
79.5
2 articles
Persistent Firestarter Malware Targets Cisco Firepower Devices in US Agencies
79.0
37 articles
CISA Alerts on Critical Flaws in SimpleHelp, Samsung MagicINFO, and D-Link Devices
78.0
3 articles
New Vulnerabilities Discovered in Serial-to-IP Converters Threaten Critical Infrastructure
78.0
9 articles
Destructive Lotus Wiper Targets Venezuelan Energy Sector Amid Geopolitical Tensions
77.9
8 articles
Phishing Attacks Target German Politicians via Signal App
77.0
47 articles
Critical OS Command Injection Vulnerability in Atlassian Bamboo Disclosed
75.8
2 articles
Tropic Trooper Expands Tactics with Multi-Stage Attacks on Japanese and Taiwanese Targets
75.5
5 articles
Harvester APT Group Unveils New GoGra Linux Backdoor Using Microsoft Graph API
75.5
13 articles
Void Dokkaebi's Malware Campaign Exploits Developer Repositories via Fake Job Interviews
75.5
22 articles
Russian Drone Strike Compromises Chornobyl's Nuclear Safety Amid Ongoing War
75.0
50 articles
Rising Entities
Apt Group
Lazarus Group
+350%
Scattered Spider
+150%
Apt38
+300%
Volt Typhoon
+300%
Fancy Bear
+50%
Attack Type
Supply Chain Attack
+74%
Worm
+29%
Prompt Injection
+100%
Trojan
+8%
Brute Force
+17%
Campaign
Operation Midnight Hammer
+200%
Operation Absolute Resolve
+100%
Operation PhantomCLR
+100%
Checkmarx Supply Chain Campaign
NEW
Contagious Interview
NEW
Company
Signal
+2200%
Vercel
+117%
KelpDAO
+280%
Cisco
+56%
EasyDNS
+500%
Country
Sri Lanka
+1000%
Belarus
+150%
China
+5%
Afghanistan
+133%
Argentina
+150%
Cve
CVE-2026-2297
+50%
CVE-2026-1502
+100%
CVE-2026-4786
+100%
CVE-2026-21637
+100%
CVE-2025-55182
+100%
Cwe
CWE-200 - Exposure of Sensitive Information
+120%
CWE-287 - Improper Authentication
+258%
CWE-269 - Improper Privilege Management
+130%
CWE-78 - OS Command Injection
+46%
CWE-862 - Missing Authorization
+75%
Industry
Government
+13%
Entertainment
+150%
Manufacturing
+17%
Utilities
+50%
Critical Infrastructure
NEW
Malware
Cobalt Strike
+150%
React2Shell
+300%
Remcos
+100%
XWorm
+100%
Firestarter
NEW
Mitre Attack
T1486 - Data Encrypted for Impact
+53%
T1547 - Boot Or Logon Autostart Execution
+112%
T1059.003 - Windows Command Shell
+450%
T1071 - Application Layer Protocol
+21%
T1003 - OS Credential Dumping
+36%
Platform
Google Workspace
+250%
MacOS
+33%
Discord
+600%
Bitcoin
+600%
IOS
+67%
Ransomware Group
Alphv
+250%
Lockbit
+50%
BlackCat
NEW
Trigona
NEW
Kyber
NEW
Tool
Npm
+433%
RClone
+500%
Microsoft Teams
+44%
Osascript
+400%
Mythos
+300%
Vulnerability
XSS
+22%
UnDefend
+100%
Pack2TheRoot
NEW
Open Redirect Vulnerability
NEW
Broken Object Level Authorization (bola) Vulnerability
NEW
Xmr
48jWtAsev4V9iDeN5TK5PQVNGhnJJR35yiJfJ1tbA3f73ZCiiarUxc4RMU4hNMsd1Udjbe1tCiBeFbx216UXXJzLB98dmJR
NEW
Entity Type Distribution
Entity Type
Count
Company
388
Platform
357
Malware
212
Tool
205
Country
148
Cve
147
Apt Group
131
Mitre Attack
88
Campaign
54
Vulnerability
30
Attack Type
27
Ransomware Group
26
Cwe
24
Industry
22
Xmr
1