Advisories 6 May 2026

PAN-OS User-ID Authentication Portal Buffer Overflow Zero-Day Under Active Exploitation (CVE-2026-0300)

Scope: Palo Alto Networks PAN-OS (PA-Series and VM-Series Firewalls)

Advisories 6 May 2026
Cloudz RAT "Pheno" Plugin Hijacking Windows Phone Link to Steal OTPs and Credentials

Scope: Microsoft Windows Phone Link (Windows 10 and 11)

Severity: High

Advisories 6 May 2026
MuddyWater Iranian APT Deploying "False Flag" Ransomware via Microsoft Teams (Darkcomp RAT)

Scope: Microsoft Teams (Enterprise Environments)

Severity: Red

Advisories 6 May 2026
Google Android Binary Transparency Expanded to All Production Apps

Scope: Google Android (All Production Apps and Mainline Modules)

Advisories 4 May 2026
BlueKit Phishing-as-a-Service Platform – AI-Assisted Credential Theft Campaigns

Scope: Enterprise Platforms and Online Services (Broad)

Severity: High

Advisories 4 May 2026
ConsentFix v3 – OAuth Consent Phishing Campaign Targeting Microsoft Azure and M365

Scope: Microsoft Azure / Microsoft 365 (Entra ID)

Severity: Red

Advisories 4 May 2026
Atlassian Confluence Template Injection RCE (CVE-2023-22527)

Scope: Atlassian Confluence Data Center and Server

Severity: Red

Subscribe to Advisories