firewall Archives

Palo Alto Networks vulnerability exploited

Vulnerabilities

Second Recently Patched Flaw Exploited to Hack Palo Alto Firewalls

Palo Alto Networks is warning customers that a second vulnerability patched in February is being exploited in attacks.

Eduard KovacsFebruary 21, 2025

Vulnerabilities

Palo Alto Networks Confirms Exploitation of Firewall Vulnerability

Palo Alto Networks has confirmed that a recently patched firewall vulnerability tracked as CVE-2025-0108 is being actively exploited.

Eduard KovacsFebruary 18, 2025

Vulnerabilities

SonicWall Firewall Vulnerability Exploited After PoC Publication

The exploitation of a recent SonicWall vulnerability has started shortly after proof-of-concept (PoC) code was published.

Ionut ArghireFebruary 14, 2025

Vulnerabilities

Hackers Exploit Palo Alto Firewall Vulnerability Day After Disclosure

Attempts to exploit CVE-2024-0108, an authentication bypass vulnerability in Palo Alto firewalls, started one day after disclosure.

Eduard KovacsFebruary 14, 2025

Vulnerabilities

Palo Alto Networks Patches Potentially Serious Firewall Vulnerability

Palo Alto Networks has published 10 new security advisories, including one for a high-severity firewall authentication bypass vulnerability.

Eduard KovacsFebruary 13, 2025

Data Breaches

Data From 15,000 Fortinet Firewalls Leaked by Hackers

Hackers have leaked 15,000 Fortinet firewall configurations, which were apparently obtained as a result of exploitation of CVE-2022–40684.

Eduard KovacsJanuary 16, 2025

Vulnerabilities

GFI KerioControl Firewall Vulnerability Exploited in the Wild

Threat actors are exploiting a recent GFI KerioControl firewall vulnerability that leads to remote code execution.

Ionut ArghireJanuary 9, 2025

Vulnerabilities

Palo Alto Networks Patches Firewall Zero-Day Exploited for DoS Attacks

Palo Alto Networks has patched CVE-2024-3393, a vulnerability that has been exploited for DoS attacks against the company’s firewalls.

Eduard KovacsDecember 30, 2024

Vulnerabilities

Sophos Patches Critical Firewall Vulnerabilities

Sophos has released patches for a critical-severity firewall vulnerability that could lead to remote code execution.

Ionut ArghireDecember 23, 2024

Tracking & Law Enforcement

US Charges, Sanctions Chinese Man Accused of Sophos Firewall Hacking

The US government announced charges, sanctions and a reward for Guan Tianfeng, a Chinese national accused of involvement in Sophos firewall hacks.

Eduard KovacsDecember 11, 2024

Vulnerabilities

CISA Warns of Zyxel Firewall Vulnerability Exploited in Attacks

A second vulnerability in Zyxel firewalls has been exploited in Helldown ransomware attacks over the past weeks.

Ionut ArghireDecember 4, 2024

Malware & Threats

2,000 Palo Alto Firewalls Compromised via New Vulnerabilities

The number of internet-exposed Palo Alto firewalls is dropping, but 2,000 have been compromised, according to Shadowserver Foundation.

Eduard KovacsNovember 21, 2024

SECURITYWEEK NETWORK:

ICS:

All posts tagged "firewall"

Vulnerabilities

Second Recently Patched Flaw Exploited to Hack Palo Alto Firewalls

Vulnerabilities

Palo Alto Networks Confirms Exploitation of Firewall Vulnerability

Vulnerabilities

SonicWall Firewall Vulnerability Exploited After PoC Publication

Vulnerabilities

Hackers Exploit Palo Alto Firewall Vulnerability Day After Disclosure

Vulnerabilities

Palo Alto Networks Patches Potentially Serious Firewall Vulnerability

Data Breaches

Data From 15,000 Fortinet Firewalls Leaked by Hackers

Vulnerabilities

GFI KerioControl Firewall Vulnerability Exploited in the Wild

Vulnerabilities

Palo Alto Networks Patches Firewall Zero-Day Exploited for DoS Attacks

Vulnerabilities

Sophos Patches Critical Firewall Vulnerabilities

Tracking & Law Enforcement

US Charges, Sanctions Chinese Man Accused of Sophos Firewall Hacking

Vulnerabilities

CISA Warns of Zyxel Firewall Vulnerability Exploited in Attacks

Malware & Threats

2,000 Palo Alto Firewalls Compromised via New Vulnerabilities

Featured

Government

Despite Rip-and-Replace Efforts, FCC Suspects Banned Chinese Telecom Providers Still Active in US

Supply Chain Security

Impact, Root Cause of GitHub Actions Supply Chain Hack Revealed

Mobile & Wireless

Paragon Spyware Attacks Exploited WhatsApp Zero-Day

Cloud Security

What’s Behind Google’s $32 Billion Wiz Acquisition?

Phishing

Scareware Combined With Phishing in Attacks Targeting macOS Users

Funding/M&A

Google to Acquire Cloud Security Giant Wiz for $32 Billion in Cash

Artificial Intelligence

ChatGPT Tool Vulnerability Exploited Against US Government Organizations

Latest News

Government

NIST Still Struggling to Clear Vulnerability Submissions Backlog in NVD

Cloud Security

Oracle Denies Cloud Breach After Hacker Offers to Sell Data

Vulnerabilities

Russian Firm Offers $4 Million for Telegram Exploits

Security Architecture

Webinar Tomorrow: Which Security Testing Approach is Right for You?

Government

US Lifts Sanctions Against Crypto Mixer Tornado Cash

Malware & Threats

Medusa Ransomware Uses Malicious Driver to Disable Security Tools

Data Protection

NetSfere Launches Quantum-Resilient Messaging Platform for Enterprise and Government Use

Daily Briefing Newsletter