Cybersecurity Brief – April 21, 2026

CISA added eight actively exploited vulnerabilities to its Known Exploited Vulnerabilities catalog on Monday, establishing federal remediation deadlines between late April and early May 2026. The agency's action signals confirmed in-the-wild exploitation of these flaws, which represent significant attack vectors against federal networks. Federal agencies must patch affected systems by the specified deadlines under Binding Operational Directive 22-01.

Vercel customers are being targeted following a compromise of a third-party tool used by the cloud platform provider. The incident highlights supply chain risk in the developer tools ecosystem, though specific details about the compromised tool and the scope of customer impact remain limited. Separately, Huntress researchers report that Nightmare-Eclipse tooling has transitioned from proof-of-concept status to active use in real-world intrusions, marking another publicly disclosed exploit framework crossing into operational deployment.

Rhode Island hospitals face mounting cybersecurity threats, including Iran-linked targeting of U.S. healthcare organizations, while operating without enforceable security requirements or dedicated federal funding. The gap between threat activity and defensive mandates continues to expose healthcare infrastructure to elevated risk.

Sources: The Hacker News · Cybersecurity Dive · Huntress · CISA · Rhode Island Current