This pack covers two high-severity threats dominating the current landscape: a confirmed DPRK-attributed supply chain compromise of the Axios npm package (critical, BlueNoroff/STARDUST CHOLLIMA) and a patched but actively PoC-exposed Kerberos relay vulnerability (CVE-2026-20929) enabling durable certificate-based persistence in Active Directory environments. The Axios compromise demands immediate containment of build pipelines and credential rotation across any Node.js environment that installed trojanized versions between March 31 and April 2026. CVE-2026-20929 requires urgent patch validation and AD CS audit, as issued certificates survive password resets and create long-lived identity footholds that existing NTLM relay mitigations do not address.