Daily Threat Briefing – April 29, 2026

## Executive Summary This briefing reports multiple concurrent high-risk threats: actively exploited critical zero-day RCEs in GitHub and Hugging Face LeRobot, a destructive cross-platform VECT 2.0 ransomware/wiper that irreversibly destroys large files, active pre-auth SQLi against LiteLLM, Russian state-linked harvesting of Microsoft Office tokens via router exploits, and AI-enhanced North Korean social engineering; immediate patching, isolation of vulnerable services, MFA/conditional access enforcement, and immutable backups are recommended.