Cybersecurity Brief — April 14, 2026

Multiple active exploitation campaigns dominated the security landscape today as CISA added four Microsoft vulnerabilities to its Known Exploited Vulnerabilities catalog. Notably, one flaw patched 14 years ago is currently being leveraged in active ransomware operations, underscoring how legacy vulnerabilities remain viable attack vectors. The agency's action signals immediate threat activity requiring urgent patching across federal networks and critical infrastructure.

Supply chain attacks struck major targets across multiple sectors. Dutch healthcare software vendor ChipSoft suffered a ransomware incident that forced the company to disable patient services across hospitals throughout the Netherlands, directly impacting healthcare delivery. In the gaming sector, threat actor ShinyHunters executed a supply chain compromise through business analytics firm Anodot, gaining access to Rockstar Games data stored in Snowflake cloud environments and issuing extortion demands. Travel platform Booking.com disclosed unauthorized access to user information, though the scope and scale of affected accounts remains unclear.

Latin American financial institutions face sustained pressure from JanelaRAT malware, which logged 14,739 attacks in Brazil alone during 2025. Threat actors continue evolving the malware's infection chain with new features and updated versions, demonstrating active development against banking targets. Meanwhile, concerns are mounting over Anthropic's Mythos AI model, which cybersecurity experts warn could enable more sophisticated attacks against financial institutions by lowering technical barriers for complex intrusions.

Sources: The Hacker News · SecurityWeek · Reuters · CISO Platform · The Register · Check Point Research