Timeline
NCSC
UK National Cyber Security Centre; issued APT28 attribution advisory, CitrixBleed 3 guidance, and joint AIVD messaging-app warning in March–April 2026.
7 events
Filters
#117 Apr
Issued advisory on CVE-2026-3055 on 25 March 2026 urging UK operators to patch
Cybersecurity: Threats and Defences: CitrixBleed 3 lands on SAML broker#117 Apr
Mentioned in: F5 reclassifies DoS bug to 9.8 RCE
Cybersecurity: Threats and Defences#117 Apr
Mentioned in: 17-year-old Office RCE back on KEV
Cybersecurity: Threats and Defences#117 Apr
Published attribution-backed advisory on 7 April 2026 naming APT28 / GRU Unit 26165 for SOHO router DNS hijacking
Cybersecurity: Threats and Defences: GRU hijacks home routers for M365 logins#117 Apr
Issued joint advisory with AIVD on 31 March 2026 warning of state-linked messaging app targeting of high-risk individuals
Cybersecurity: Threats and Defences: Signal, WhatsApp hit by three states#117 Apr
Mentioned in: Trump proposes $707m CISA cut, 860 jobs
Cybersecurity: Threats and Defences#117 Apr