Urgent: Palo Alto PAN-OS Zero-Day Exploitation — The Hacker News

Palo Alto Networks has identified an active exploitation of a critical remote code execution (RCE) vulnerability in its PAN-OS, which is used in its firewall products. The flaw, identified as CVE-2026-12345, allows attackers to execute arbitrary code with root privileges. Security teams should prioritize patching affected systems immediately to prevent potential breaches and service disruptions.

MuddyWater's False Flag Ransomware Tactics Uncovered — BleepingComputer

The Iranian state-sponsored hacking group MuddyWater has been using Chaos ransomware as a decoy in its cyber operations. By disguising their activities, they aim to mislead forensic investigations while stealing credentials through Microsoft Teams. This tactic highlights the need for enhanced monitoring of collaboration tools and rapid response strategies to mitigate credential theft risks.

• Mirai-Based xlabs_v1 Botnet Exploits ADB to Hijack IoT Devices for DDoS Attacks [The Hacker News]
• Hackers abuse Google ads for GoDaddy ManageWP login phishing [BleepingComputer]
• Critical vm2 sandbox bug lets attackers execute code on hosts [BleepingComputer]
• New Cisco DoS flaw requires manual reboot to revive devices [BleepingComputer]
• Google's Android Apps Get Public Verification to Stop Supply Chain Attacks [The Hacker News]