⚡ Weekly Recap: New Linux Flaw, PAN-OS Exploit, AI-Powered Attacks, OAuth Phishing and More

Weekly cybersecurity roundup reporting multiple active threats and exploited vulnerabilities: PAN-OS GlobalProtect authentication bypass (CVE-2026-0257) under exploitation, a critical unpatched Gogs RCE zero-day, the takedown of GlassWorm C2 after widespread distribution via trojanized VS Code extensions and compromised packages, large coordinated smishing and phishing campaigns (EvilTokens, RatPressto), Microsoft/Windows and Linux vulnerabilities being exploited, an emergent Payload ransomware with confirmed victims, and broadened use of AI by threat actors — recommendation: prioritize patching the listed high-risk CVEs, audit default configurations, and monitor indicated IOCs.