Cyber Daily News (April 29, 2026): CISA KEV Adds Windows Shell and ScreenConnect; GitHub RCE CVE-2026-3854; Vect Ransomware Wiper Risk; Handala Targets US Troops
Security teams got a crowded docket this week. In fast succession, CISA added actively exploited Microsoft Windows Shell and ConnectWise ScreenConnect flaws to its Known Exploited Vulnerabilities catalog—triggering an aggressive federal patch deadline—while GitHub disclosed a critical remote code execution bug reachable via a crafted git push. At the same time, a critical flaw in…