Chrome Zero-Day Under Active Attack as Supply Chain Threats Hit Axios and TrueConf

Publication Date: April 2, 2026

Summary

This 24-hour period has been marked by a surge in high-impact threats, including the active exploitation of a critical zero-day vulnerability (CVE-2026-5281) in Google Chrome, affecting billions of users. Concurrently, sophisticated supply chain attacks have compromised widely-used developer tools, with North Korean actors targeting the Axios npm package and a Chinese-nexus group exploiting a zero-day in TrueConf video conferencing software. These incidents, coupled with ongoing nation-state espionage campaigns and ransomware attacks on critical infrastructure, highlight a landscape of escalating complexity and risk, demanding immediate patching and heightened vigilance from all organizations.

Today New Articles

Chinese APT Mustang Panda Renews Espionage Campaign Against European Governments

The Chinese state-sponsored threat group TA416, also known as Mustang Panda, has resumed its cyber-espionage operations against European government and diplomatic entities, including EU and NATO missions. According to Proofpoint, the group has been active sinc...

Microsoft Warns of Social Engineering Campaign Abusing WhatsApp for Windows

Microsoft has issued a warning about an ongoing social engineering campaign targeting users of the WhatsApp desktop application on Windows. Attackers send malicious Visual Basic Script (`.vbs`) files disguised as legitimate attachments. Once executed, the scri...

Cisco Patches Critical Unauthenticated RCE Flaw in Smart Software Manager

Cisco has released a security patch for a critical vulnerability, CVE-2026-20160, in its Smart Software Manager On-Prem (SSM On-Prem) product. The flaw, which has a CVSS score of 9.8, could allow an unauthenticated, remote attacker to execute arbitrary command...

North Dakota Water Treatment Plant Hit by Ransomware, Reverts to Manual Operations

A water treatment facility in Minot, North Dakota, serving approximately 80,000 people, was hit by a ransomware attack in March 2026. The attack compromised the plant's Supervisory Control and Data Acquisition (SCADA) system, forcing operators to shut it down...

AI Now Leading Source of Friction for CISOs in Retail and Hospitality, Report Finds

A new CISO Benchmark Report from the Retail & Hospitality ISAC (RH-ISAC) and IANS reveals a significant shift in the threat landscape: Artificial Intelligence is now the top concern for security leaders in these sectors. 71% of surveyed CISOs identified AI as...

Iranian Hackers Launch Coordinated Password Spray Attacks on Middle East

The Iranian APT group Gray Sandstorm is suspected of conducting a large-scale password spray campaign against government and private sector organizations in Israel and the UAE. According to Check Point researchers, the cyberattacks, which began in early March...

Article Updates

TeamPCP's Supply Chain Attack Cascade Hits LiteLLM, Stealing AI Credentials

Update:AI recruiting firm Mercor has confirmed it was impacted by the LiteLLM supply chain attack. Malicious versions 1.82.7 and 1.82.8 of LiteLLM were briefly available on March 27, during which Mercor's systems were compromised. The notorious Lapsus$ group has sinc...

Chinese-Nexus Actor Exploits TrueConf Zero-Day in "TrueChaos" Campaign

Update:New analysis from Check Point attributes the 'Operation TrueChaos' campaign, exploiting CVE-2026-3502 in TrueConf, to a Chinese-nexus APT group. The updated report provides a refined attack chain, including a user prompt for malicious updates, and incorporates...

European Commission Confirms Data Breach After ShinyHunters Claims 350GB Theft

Update:The European Commission's data breach by ShinyHunters is further substantiated by the group's release of screenshots, purportedly showing employee data and access to an email server. This new evidence reinforces the extent of the 350GB data theft from the EC's...