Report Date: 2026-05-04
New KEVs: 4Critical CVEs: 5Ransomware Victims: 200
4 vulnerabilities were added to the CISA Known Exploited Vulnerabilities catalog this period. 5 additional critical-severity CVEs have been published to the NVD but not yet confirmed as exploited — Linux products show the strongest concentration of risk signals this week. Threat intelligence sources this period reference Salt Typhoon (China). Ransomware activity is moderate with 200 new victims posted to leak sites over the last 7 days, with Qilin posting the most victims.