Uncategorized Palo Alto Networks Patches High-Severity Vulnerability in Retired Migration Tool Palo Alto Networks has released patches for multiple vulnerabilities in the Expedition migration tool, which was retired on December 31, 2024. Ionut ArghireJanuary 9, 2025
Vulnerabilities Palo Alto Networks Patches Firewall Zero-Day Exploited for DoS Attacks Palo Alto Networks has patched CVE-2024-3393, a vulnerability that has been exploited for DoS attacks against the company’s firewalls. Eduard KovacsDecember 30, 2024
Vulnerabilities New VPN Attack Demonstrated Against Palo Alto Networks, SonicWall Products Palo Alto Networks and SonicWall VPNs affected by vulnerabilities allowing remote code execution and privilege escalation. Eduard KovacsNovember 27, 2024
Malware & Threats 2,000 Palo Alto Firewalls Compromised via New Vulnerabilities The number of internet-exposed Palo Alto firewalls is dropping, but 2,000 have been compromised, according to Shadowserver Foundation. Eduard KovacsNovember 21, 2024
Malware & Threats Palo Alto Patches Firewall Zero-Day Exploited in Operation Lunar Peek Palo Alto Networks has released patches and CVEs for the firewall zero-days exploited in what the company calls Operation Lunar Peek. Eduard KovacsNovember 19, 2024
Vulnerabilities Palo Alto Networks Releases IoCs for New Firewall Zero-Day Palo Alto Networks has released IoCs for the attacks exploiting a newly uncovered firewall zero-day vulnerability. Eduard KovacsNovember 18, 2024
Vulnerabilities CISA Warns of Two More Palo Alto Expedition Flaws Exploited in Attacks CISA has added two more Palo Alto Networks Expedition flaws, CVE-2024-9463 and CVE-2024-9465, to its KEV catalog. Eduard KovacsNovember 15, 2024
Vulnerabilities Palo Alto Networks Confirms New Firewall Zero-Day Exploitation Palo Alto Networks has confirmed that a zero-day is being exploited in attacks after investigating claims of a firewall remote code execution flaw. Eduard KovacsNovember 15, 2024
Vulnerabilities Palo Alto Networks Addresses Remote Code Execution Vulnerability Claims Palo Alto Networks has issued an advisory urging customers to take action in response to claims of an RCE vulnerability in PAN-OS. Eduard KovacsNovember 11, 2024
Vulnerabilities Palo Alto Networks Expedition Vulnerability Exploited in Attacks, CISA Warns CISA has added a Palo Alto Networks Expedition flaw tracked as CVE-2024-5910 to its Known Exploited Vulnerabilities Catalog. Eduard KovacsNovember 8, 2024
ICS/OT Palo Alto Networks Adds New Capabilities to OT Security Solution Palo Alto Networks has added new remote access, virtual patching and firewall capabilities to its OT Security solution. Eduard KovacsOctober 22, 2024
Network Security Palo Alto Patches Critical Firewall Takeover Vulnerabilities Palo Alto warns that attackers can access usernames, cleartext passwords, device configurations, and device API keys of PAN-OS firewalls. Ryan NaraineOctober 9, 2024