Cyber Brief 26-05 - April 2026

This Cyber Brief (April 2026) synthesizes 366 open-source reports describing high-impact activity across cyber policy, espionage, crime, disruption, and vulnerabilities: Russia- and China-linked reconnaissance and APT operations (including router and nuclear communications targeting), supply-chain campaigns across npm/PyPI/Go/crates/Packagist and trojanised developer tooling, widespread credential- and token-theft campaigns (OAuth/device-code phishing, stealer malware), active exploitation of critical CVEs (FortiClient, SharePoint, Flowise), destructive wiper operations and PLC targeting of critical infrastructure, large data exposures affecting European government and public services, and coordinated law enforcement actions against DDoS and crypto fraud actors.