"Zero-Day Exploits: Palo Alto Networks Firewalls Under Attack"
Highly capable hackers are exploiting a zero-day vulnerability in Palo Alto Networks' firewall product, allowing them to execute malicious code with root privileges. The attacks, which have been ongoing for at least two weeks, are the latest in a series targeting firewalls, VPNs, and file-transfer appliances. The vulnerability, CVE-2024-3400, has earned the maximum severity rating of 10.0 and is present in multiple versions of PAN-OS firewalls. Security firm Volexity, which discovered the attacks, believes the hackers are likely backed by a nation-state and warns of potential mass exploitation as new threat groups learn of the vulnerability. Palo Alto Networks has yet to release a patch but is urging affected customers to follow workaround and mitigation guidance.