Security news aggregator

Latest cybersecurity reporting from selected sources.

Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.

5 headlines in this view

Showing 5 most recent headlines Filtered view

Security Affairs 3 days, 8 hours ago

CVE-2026-0257: Rapid7 Caught Attackers Abusing Forged VPN Cookies Against Multiple Customers

CVE-2026-0257 lets attackers forge Palo Alto GlobalProtect auth cookies and bypass VPN login. Exploitation confirmed since May 17. Palo Alto Networks addressed the vulnerability CVE-2026-0257 on May 13. Two weeks later, cybersecurity firm Rapid7 confirmed active exploitation across multiple customer environments. The flaw impacts the GlobalProtect portal and gateway components of Palo Alto Networks PAN-OS […]

More from Security Affairs 1 Jun 2026, 5:52 a.m. Incident · 14 stories Actively exploited CVE-2026-0257 Bypass CVE Flaw Palo Alto Networks VPN Vulnerability

The Hacker News 4 days, 19 hours ago

PAN-OS GlobalProtect Authentication Bypass (CVE-2026-0257) Under Active Exploitation

Palo Alto Networks has warned that a recently disclosed medium-severity security flaw impacting PAN-OS and Prisma Access has come under active exploitation in the wild

More from The Hacker News 30 May 2026, 6:41 p.m. Incident · 14 stories Actively exploited CVE-2026-0257 Authentication Bypass CVE Disclosure Flaw Palo Alto Networks VPN Vulnerability

Bleeping Computer 1 year, 3 months ago

SonicWall firewall exploit lets hackers hijack VPN sessions, patch now

Security researchers at Bishop Fox have published complete exploitation details for the CVE-2024-53704 vulnerability that allows bypassing the authentication mechanism in certain versions of the SonicOS SSLVPN application. [...]

More from Bleeping Computer 12 Feb 2025, 4:56 a.m. Actively exploited CVE-2024-53704 Authentication CVE Critical Exploit Firewalls Patch Research VPN Vulnerability

The Hacker News 2 years, 10 months ago

Alert: 330,000 FortiGate Firewalls Still Unpatched to CVE-2023-27997 RCE Flaw

No less than 330000 FortiGate firewalls are still unpatched and vulnerable to CVE-2023-27997, a critical security flaw affecting Fortinet devices that have come under active exploitation in the wild

More from The Hacker News 4 Jul 2023, 6:58 p.m. Actively exploited CVE-2023-27997 CVE Critical Exposure Firewalls Flaw Fortinet Remote Code Execution Report VPN Vulnerability

Bleeping Computer 4 years ago

Hackers are exploiting critical bug in Zyxel firewalls and VPNs

Hackers have started to exploit a recently patched critical vulnerability, tracked as CVE-2022-30525, that affects Zyxel firewall and VPN devices for businesses. [...]

More from Bleeping Computer 16 May 2022, 6:47 a.m. Actively exploited CVE-2022-30525 CVE Critical Exploit Firewalls Patch VPN Vulnerability Zyxel

Latest cybersecurity reporting from selected sources.

Refine the feed

Volume over time

Fresh headlines available

CVE-2026-0257: Rapid7 Caught Attackers Abusing Forged VPN Cookies Against Multiple Customers

PAN-OS GlobalProtect Authentication Bypass (CVE-2026-0257) Under Active Exploitation

SonicWall firewall exploit lets hackers hijack VPN sessions, patch now

Alert: 330,000 FortiGate Firewalls Still Unpatched to CVE-2023-27997 RCE Flaw

Hackers are exploiting critical bug in Zyxel firewalls and VPNs