TechRadar

Major Palo Alto security flaw is being exploited via Python zero-day backdoor

For weeks now, unidentified threat actors have been leveraging a critical zero-day vulnerability in Palo Alto Networks’ PAN-OS software, running arbitrary code on vulnerable firewalls, with root ...
Bleeping Computer

Palo Alto Networks warns of firewall hijack bugs with public exploit

Palo Alto Networks warned customers today to patch security vulnerabilities (with public exploit code) that can be chained to let attackers hijack PAN-OS firewalls. The flaws were found in Palo Alto ...
CSOonline

Palo Alto Networks zero-day firewall flaws caused by basic dev mistakes

Attackers are chaining two flaws in the wild to bypass authentication and escalate privileges via the PAN-OS management web interface to gain root privileges on Palo Alto Networks firewalls. Palo Alto ...
TechCrunch

Palo Alto Networks warns hackers are breaking into its customers’ firewalls — again

Malicious hackers have compromised potentially thousands of organizations by exploiting two new zero-day vulnerabilities found in widely used software made by cybersecurity giant Palo Alto Networks.
Dark Reading

Palo Alto Network Issues Hotfixes for Zero-Day Bug in Its Firewall OS

Palo Alto Networks (PAN) on April 14 released hotfixes to address a maximum severity zero-day bug in multiple versions of its PAN-OS software that a threat actor is using to deploy a novel Python ...
Bleeping Computer

Java and Python Contain Security Flaws That Allow Attackers to Bypass Firewalls

Both Java and Python contain similar security flaws that allow an attacker to bypass firewalls by injecting malicious commands inside FTP URLs. The problems arise from the way Java and Python (through ...
Ars Technica

“Highly capable” hackers root corporate networks by exploiting firewall 0-day

Highly capable hackers are rooting multiple corporate networks by exploiting a maximum-severity zero-day vulnerability in a firewall product from Palo Alto Networks, researchers said Friday. The ...