"Zero-Day Exploits: Palo Alto Networks Firewalls Under Attack"
Highly capable hackers are exploiting a zero-day vulnerability in Palo Alto Networks' firewall product, allowing them to execute malicious code with root privileges. The attacks, which have been ongoing for at least two weeks, are the latest in a series targeting firewalls, VPNs, and file-transfer appliances. The vulnerability, CVE-2024-3400, has earned the maximum severity rating of 10.0 and is present in multiple versions of PAN-OS firewalls. Security firm Volexity, which discovered the attacks, believes the hackers are likely backed by a nation-state and warns of potential mass exploitation as new threat groups learn of the vulnerability. Palo Alto Networks has yet to release a patch but is urging affected customers to follow workaround and mitigation guidance.
- “Highly capable” hackers root corporate networks by exploiting firewall 0-day Ars Technica
- Palo Alto Networks firewalls under attack, hotfixes incoming! (CVE-2024-3400) Help Net Security
- Palo Alto Networks warns of zero-day in VPN product The Record from Recorded Future News
- State-Sponsored Hackers Exploit Zero-Day to Backdoor Palo Alto Networks Firewalls SecurityWeek
- Zero-Day Alert: Critical Palo Alto Networks PAN-OS Flaw Under Active Attack The Hacker News
Reading Insights
0
0
2 min
vs 3 min read
80%
581 → 116 words
Want the full story? Read the original article
Read on Ars Technica