This pack is dominated by two converging threat patterns: a high-tempo ransomware campaign (Storm-1175/Medusa) actively exploiting 16 vulnerabilities across 10 enterprise platforms, and a cluster of critical unauthenticated RCE flaws in widely deployed management and web infrastructure that attackers are weaponizing within hours of disclosure. Three items carry CISA KEV designations requiring federally mandated remediation by April 9, 2026, and two additional zero-days in Fortinet FortiClient EMS are under active in-the-wild exploitation as of this reporting date. Organizations in healthcare, finance, education, and any sector running AI/ML tooling or internet-facing management infrastructure face the highest immediate exposure and must treat patch deployment for CVE-2026-35616, CVE-2026-21643, CVE-2026-1405, CVE-2026-3965, and the Storm-1175 CVE portfolio as emergency change events.