Must-Know

Tuesday, April 14, 2026

April 2026 Patch Tuesday: SharePoint Zero-Day Among 167 CVEs Fixed

zero-day · rce · microsoft · vulnerability · cve

Monday, April 13, 2026

ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers

rce · cve · zero-day · vulnerability

OpenAI Rotates macOS Code-Signing Certs After North Korea-Linked Axios Supply Chain Attack

supply-chain · openai · malware · github

Anthropic Restricts Mythos Preview After Model Autonomously Exploits Zero-Days in Major OS and Browsers

anthropic · llm · ai-safety · zero-day · vulnerability

Saturday, April 11, 2026

Adobe Patches Actively Exploited Acrobat Reader RCE — CVE-2026-34621

zero-day · cve · vulnerability · appsec · rce

Friday, April 10, 2026

CPUID Supply Chain Attack Poisons CPU-Z and HWMonitor Downloads

supply-chain · malware

Thursday, April 9, 2026

Smart Slider 3 Pro Update System Hijacked to Deliver Backdoored WordPress and Joomla Versions

supply-chain · malware · wordpress · appsec

Adobe Reader Zero-Day Exploited via Malicious PDFs Since December 2025

zero-day · cve · vulnerability · appsec

Wednesday, April 8, 2026

LiteLLM Supply Chain Attack — PyPI Packages Compromised

supply-chain · pypi · llm · malware

Tuesday, April 7, 2026

Claude Code Source Snippets Leaked Via Misconfigured Bucket

data-breach · anthropic · cloud-security