THE ThreatsDay Bulletin for 23 April 2026 highlights a string of major cybercrime and security incidents, starting with a DeFi hack in which LayerZero reported that North Korean threat actors tracked as TraderTraitor may have been behind the KelpDAO incident, resulting in the theft of $290 million. The piece notes that two LayerZero RPC nodes were compromised and a third faced a DDoS, with Arbitrum’s Security Council freezing 30,766 ETH tied to the exploit.
It also covers a broad spectrum of other risks, from active RCE exploits in MajorDoMo to supply-chain malware in the npm registry and a surge of AI-related prompt injection, covert browser data access, and macOS LotL techniques. Additional items include a Belarus-based ProxySmart SIM-farm platform used to run mobile proxies, Ofcom’s probe into Telegram for potential CSAM, and a sanctions move by the EU against two pro-Russian disinformation entities.
The bulletin—written by Ravie Lakshmanan and published on 23 April 2026—gives a sobering view that old attack paths persist, urging patching, better supply-chain checks, and greater input verification. According to Reuters, Clarifai has deleted 3 million OkCupid profile photos as part of an FTC settlement, underscoring privacy imperatives amid rapid AI-enabled data handling.