Episode Details

On today’s EM Morning Brief, CISA adds eight actively exploited vulnerabilities to the Known Exploited Vulnerabilities Catalog with a May 11 federal remediation deadline. FEMA major disaster declarations for Montana, Idaho, and Oregon tied to December 2025 storms were published in the Federal Register, opening Public Assistance funding. Super Typhoon Sinlaku recovery continues across Guam and the CNMI under active federal emergency and public-health emergency determinations. Red Flag Warnings span the Plains, Southwest, and High Plains with critical fire weather peaking midweek, and the Hawaiian Volcano Observatory revises its Kilauea Episode 45 forecast window to April 21 through 26. State updates cover Texas flash flooding, Wisconsin tornado recovery, Oklahoma wildfire containment, and the ongoing response to the Minidoka Memorial Hospital cyber incident in Idaho. EM Morning Brief is your concise daily update on national and state-by-state emergency management news. Produced by Sitch Radio, an EOC Voices podcast.

Key Takeaways

• CISA KEV update: Eight new actively exploited CVEs added April 20 (PaperCut, JetBrains TeamCity, Kentico, Quest KACE, Zimbra, three Cisco SD-WAN Manager). Federal patch deadline May 11.

• FEMA declarations published: Major Disaster Declarations for Montana (DR-4901), Idaho (DR-4905), and Oregon formally appear in the Federal Register, opening Public Assistance for December 2025 storm damage.

• Sinlaku recovery: Federal emergency declarations and HHS public-health emergency remain in effect for Guam and the CNMI. Power and water restoration on Saipan, Tinian, and Rota may take weeks.

• Kilauea Episode 45: HVO revises the lava-fountaining forecast window to Tuesday, April 21 through Sunday, April 26. Summit remains paused but inflating.

• Fire weather: Red Flag Warnings active across Colorado, Kansas, Nebraska, New Mexico, Oklahoma, South Dakota, and Wyoming. Wednesday expected to be most dangerous day of the week.

• Texas flash flooding: Flash Flood Warning along San Antonio to New Braunfels corridor; SAFD reports nine water rescues. Houston metro sees localized urban flooding with rainfall rates up to three inches per hour.

• Wisconsin storm response: SEOC Update 4 reports 28 resource requests and continued coordination with county and tribal emergency managers following confirmed April 14 tornadoes and flood damage.

• Idaho hospital cyber incident: Minidoka Memorial Hospital restores imaging services April 19. Blackwater ransomware group claims April 17 and threatens data publication after April 24.

• April 17 tornado cleanup: NWS confirms a high-end EF-2 in Lena, Illinois; EF-1 tornadoes in Jo Daviess County, Illinois and Washington County, Iowa; and an EF-2 in Rochester, Minnesota with two injuries.

Sponsors

The NIMS Store - https://thenimsstore.com/

Sources

CISA

• CISA Alert — Eight new KEV entries (April 20, 2026) — PaperCut, JetBrains TeamCity, Kentico Xperience, Quest KACE SMA, Zimbra, and three Cisco Catalyst SD-WAN Manager CVEs; federal patch deadline May 11, 2026

• CISA — Known Exploited Vulnerabilities Catalog — Authoritative catalog of actively exploited CVEs

FEMA

• Federal Register — Montana Major Disaster Declaration (DR-4901-DR) — Public Assistance O