← Back to Blog
Security Briefing5 min read2026-05-07

Security Briefing, May 7 2026: PAN-OS Zero-Day, vm2 Sandbox Escape, MuddyWater False Flag, and Microsoft AiTM Phishing

This morning’s pattern is ugly and consistent: attackers are winning by abusing the trusted layer around the system — the firewall portal, the sandbox wrapper, the collaboration workflow, and the sign-in flow users think they recognize.


Top line: lock down PAN-OS Captive Portal exposure, patch vm2 immediately anywhere untrusted code runs, review Teams-driven remote access and extortion incidents for espionage tradecraft, and treat cloud-hosted compliance-themed phishing as token theft, not just password theft.


1. PAN-OS Captive Portal is the highest-priority internet edge problem today

Palo Alto says CVE-2026-0300 is a critical buffer overflow in the User-ID Authentication Portal that allows unauthenticated root-level code execution on exposed PA-Series and VM-Series firewalls. Limited exploitation is already underway, and both vendor guidance and outside reporting point to one immediate truth: if Captive Portal is reachable from untrusted IP space, the risk is live now.


2. vm2 proves again that “sandboxed” JavaScript is not a security boundary by itself

The vm2 bug tracked as CVE-2026-26956 lets attackers escape the sandbox and execute code on the host, with a public proof of concept already available. The issue hits Node.js 25 environments using specific runtime features, but the bigger lesson is broader: if your product runs customer-supplied JavaScript, the wrapper is part of the blast radius.


3. MuddyWater is using ransomware theater to hide espionage work

Rapid7-linked reporting says the Iranian group MuddyWater used Microsoft Teams social engineering, screen sharing, credential capture, AnyDesk, DWAgent, and extortion messaging while never actually deploying file-encrypting ransomware. Chaos branding was the costume, but the underlying operation looked like access, persistence, and data theft.


4. Microsoft’s conduct-review phishing wave is built to steal tokens in real time

Microsoft observed more than 35,000 attempts across roughly 13,000 organizations using fake internal conduct notices, PDF lures, Cloudflare CAPTCHA gates, and adversary-in-the-middle pages that proxy Microsoft sign-in. That matters because AiTM phishing beats weak MFA by capturing session tokens, not just passwords.


What security teams should do before lunch

  1. Close or restrict exposed PAN-OS Captive Portal surfaces first.
  2. Patch vm2 and review every path where customers or staff can run JavaScript on shared hosts.
  3. Escalate Teams-based remote-support social engineering into the same playbook as email phishing and vishing.
  4. Update phishing response to prioritize token revocation and session review, not only password reset.

Sources


Bottom line: the pattern today is trust inversion. Internet-facing portals, sandbox runtimes, collaboration tools, and familiar sign-in pages all become attack surfaces when teams assume the wrapper is the control.

Audit the trust boundaries attackers are actually using

KENSAI helps teams find exposed portals, fragile execution sandboxes, risky remote-access paths, and identity flows that collapse under real-world phishing pressure.

Start Free Scan →

Stay sharp.

🗡️ KENSAI Security Team