Latest Palo Alto Networks news

22,500 Palo Alto firewalls "possibly vulnerable" to ongoing attacks

Approximately 22,500 exposed Palo Alto GlobalProtect firewall devices are likely vulnerable to the CVE-2024-3400 flaw, a critical command injection vulnerability that has been actively exploited in attacks since at least March 26, 2024.
- Bill Toulas
- April 19, 2024
- 11:27 AM
- 1
Exploit released for Palo Alto PAN-OS bug used in attacks, patch now

Exploit code is now available for a maximum severity and actively exploited vulnerability in Palo Alto Networks' PAN-OS firewall software.
- Sergiu Gatlan
- April 16, 2024
- 02:36 PM
- 0
Palo Alto Networks fixes zero-day exploited to backdoor firewalls

Palo Alto Networks has started releasing hotfixes for a zero-day vulnerability that has been actively exploited since March 26th to backdoor PAN-OS firewalls.
- Sergiu Gatlan
- April 15, 2024
- 08:59 AM
- 1
Palo Alto Networks zero-day exploited since March to backdoor firewalls

Suspected state-sponsored hackers have been exploiting a zero-day vulnerability in Palo Alto Networks firewalls tracked as CVE-2024-3400 since March 26, using the compromised devices to breach internal networks, steal data and credentials.
- Lawrence Abrams
- April 13, 2024
- 08:35 AM
- 0
Palo Alto Networks warns of PAN-OS firewall zero-day used in attacks

Today, Palo Alto Networks warns that an unpatched critical command injection vulnerability in its PAN-OS firewall is being actively exploited in attacks.
- Bill Toulas
- April 12, 2024
- 09:28 AM
- 0
CISA is warning of high-severity PAN-OS DDoS flaw used in attacks

A recent vulnerability found in Palo Alto Networks' PAN-OS has been added to the catalog of Known Exploitable Vulnerabilities from the U.S. Cybersecurity and Infrastructure Security Agency (CISA).
- Ionut Ilascu
- August 22, 2022
- 05:34 PM
- 0
Palo Alto Networks: New PAN-OS DDoS flaw exploited in attacks

Palo Alto Networks has issued a security advisory warning of an actively exploited high-severity vulnerability impacting PAN-OS, the operating system used by the company's networking hardware products.
- Bill Toulas
- August 12, 2022
- 11:40 AM
- 0
Palo Alto Networks firewalls, VPNs vulnerable to OpenSSL bug

American cybersecurity company Palo Alto Networks warned customers on Wednesday that some of its firewall, VPN, and XDR products are vulnerable to a high severity OpenSSL infinite loop bug disclosed three weeks ago
- Sergiu Gatlan
- April 06, 2022
- 05:37 PM
- 0
Palo Alto Networks error exposed customer support cases, attachments

EXCLUSIVE: A bug in the support dashboard of Palo Alto Networks (PAN) exposed thousands of customer support tickets to an unauthorized individual, BleepingComputer has learned. The exposed information included, customer names, contact information, conversations between staff and customers, firewall logs and configuration dumps.
- Ax Sharma
- March 31, 2022
- 09:00 AM
- 0
Palo Alto Networks fixes critical flaw in PAN-OS firewall software

Palo Alto Networks has fixed a new critical vulnerability affecting multiple versions of PAN-OS, the operating system affecting its next-generation firewalls.
- Ionut Ilascu
- September 11, 2020
- 11:11 AM
- 0
Palo Alto Networks fixes another severe flaw in PAN-OS devices

Palo Alto Networks (PAN) today addressed another severe vulnerability found in the PAN-OS GlobalProtect portal and affecting unpatched PAN next-generation firewalls.
- Sergiu Gatlan
- July 08, 2020
- 05:18 PM
- 0
Palo Alto Networks patches critical vulnerability in firewall OS

Palo Alto Networks disclosed a critical vulnerability found in the operating system (PAN-OS) of all its next-generation firewalls that could allow unauthenticated network-based attackers to bypass authentication.
- Sergiu Gatlan
- June 29, 2020
- 12:16 PM
- 1