Cyber Threat Brief

2026-04-16: Critical Alerts

Listen Later
Show Notes - 2026-04-16
Stories Covered
  • April 16, 2026
  • 17-Year-Old Excel Vulnerability (CVE-2009-0238) Exploited in Active Attacks [Critical Alerts]
  • Adobe Acrobat Reader Zero-Day (CVE-2026-34621) Under Active Exploitation [Critical Alerts]
  • Microsoft SharePoint Server Spoofing Flaw (CVE-2026-32201) Exploited as Zero-Day [Critical Alerts]
  • Windows Task Host Privilege Escalation (CVE-2025-60710) Exploited [Critical Alerts]
  • nginx-ui Authentication Bypass (CVE-2026-33032) Actively Exploited [Critical Alerts]
  • Autovista Group Confirms Ransomware Attack [Ransomware & Extortion]
  • PowMix Botnet Targets Czech Organizations [Ransomware & Extortion]
  • Germany Reclaims Top Spot for European Ransomware Targeting [Ransomware & Extortion]
  • n8n Workflow Automation Platform Abused for Phishing and Malware Delivery [Business & Infrastructure Threats]
  • Supply Chain Compromise: TeamPCP Injects Credential Harvesters into Trusted Repositories [Business & Infrastructure Threats]
  • Signed Adware Deploys AV-Killing PowerShell Scripts with SYSTEM Privileges [Business & Infrastructure Threats]
  • WordPress EssentialPlugin Suite Compromised with Backdoor [Business & Infrastructure Threats]
  • Compromised DVRs Used in Telnet-Based Botnet Attacks [Business & Infrastructure Threats]
  • Microsoft Fixes Windows Server 2025 Automatic Upgrade Bug [Windows / AD Security]
  • April Windows Server 2025 Updates Trigger BitLocker Recovery Prompts [Windows / AD Security]
  • Windows Server 2025 April Update Fails to Install on Some Systems [Windows / AD Security]
  • NIST Narrows CVE Analysis Scope Amid 263% Surge in Vulnerability Submissions [General Security News]
  • UAC-0247 Targets Ukrainian Government and Hospitals with AgingFly Malware [General Security News]
  • Microsoft Pays $2.3 Million for Cloud and AI Vulnerabilities at Zero Day Quest [General Security News]
  • Raspberry Pi OS Requires Password for sudo by Default [General Security News]
  • US Nationals Sentenced for Operating North Korean IT Worker Laptop Farm [General Security News]
  • Fortinet FortiSandbox Critical Authentication Bypass and RCE [Vulnerability Disclosures]
  • SAP BW/BPC SQL Injection (CVE-2026-27681) [Vulnerability Disclosures]
  • Adobe ColdFusion Critical Vulnerabilities [Vulnerability Disclosures]
  • Microsoft April Patch Tuesday: 169 Vulnerabilities [Vulnerability Disclosures]
    • CVEs Referenced

    CVE-2009-0238, CVE-2025-60710, CVE-2026-27282, CVE-2026-27304, CVE-2026-27305, CVE-2026-27306, CVE-2026-27681, CVE-2026-32201, CVE-2026-33032, CVE-2026-34619, CVE-2026-34621, CVE-2026-35616, CVE-2026-39808, CVE-2026-39813

    Indicators of Compromise

    IP Addresses:

    0.0.0.0, 46.6.14.135

    Read the full brief

    ...more
    View all episodesView all episodes
    Download on the App Store
    Cyber Threat BriefBy Carolina Clear Tech, LLC