Daily Threat Briefing – May 8, 2026

This briefing reports active exploitation of multiple high‑severity vulnerabilities (notably Ivanti EPMM CVE‑2026‑6973 and Palo Alto PAN‑OS CVE‑2026‑0300), the emergence of the PCPJack credential‑theft worm targeting cloud and developer environments, banking trojan TCLBanker propagating via social and software supply‑chain vectors, state‑sponsored Microsoft Office token harvesting, and extortion/breach activity against educational platforms; it includes recommended mitigation steps and an urgent action checklist.