Daily Cyber Intelligence Brief

April 14, 2026

Main Headline: Microsoft Fixes 167 Vulnerabilities as Russian APTs Weaponize Edge Routers for Mass Token Theft

The Big Story

Microsoft’s April 2026 Patch Tuesday has addressed a staggering 167 security vulnerabilities, including an actively exploited SharePoint Server zero-day and a publicly disclosed weakness in Windows Defender nicknamed “BlueHammer.” The release coincides with a massive state-sponsored campaign linked to Russian military intelligence (GRU), which has successfully compromised over 18,000 networks. Instead of deploying traditional malware, these actors are leveraging known vulnerabilities in legacy edge routers to silently harvest authentication tokens from Microsoft Office users.