Daily Threat Briefing – May 1, 2026

This briefing reports multiple high‑severity, active threats including coordinated supply‑chain compromises of developer packages (PyTorch Lightning, SAP npm), Russian state‑sponsored mass harvesting of Microsoft Office tokens via router vulnerabilities, AI‑augmented backdoor/RAT campaigns (DEEP#DOOR, EtherRAT) targeting high‑privilege accounts, a critical Linux local privilege escalation (CVE-2026-31431) and a SharePoint zero‑day among 167 Microsoft fixes, plus large-scale cyber‑enabled cargo theft, and provides prioritized mitigation actions.