Security news aggregator

Latest coverage for Palo Alto Networks

Palo Alto Networks develops cybersecurity platforms and products whose vulnerabilities, advisories, and deployments can affect network and cloud security.

6 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Palo Alto Networks develops cybersecurity platforms for network firewalls, cloud and application security, secure remote access, endpoint protection, and security operations. Its firewalls commonly run PAN-OS, enforcing traffic and access policies, inspecting network activity, and collecting telemetry for detection and response.

For practitioners, advisories involving PAN-OS, firewall management interfaces, or remote-access gateways can require rapid exposure assessment, patching, configuration changes, and log review for signs of exploitation. Internet-facing management services and overly broad rules are important attack surfaces; a vulnerability may be more consequential when administrative access or sensitive inspection data is involved. Cloud and endpoint components add identity, API, agent, and data-handling dependencies, so updates should be tested across integrations and privileges. Security teams should validate fixes against asset inventories, monitor relevant indicators, and control access to retained telemetry where privacy or regulatory obligations apply.

Showing 6 most recent headlines Filtered view

Palo Alto Networks warns that hackers are actively exploiting a critical authentication bypass flaw (CVE-2025-0108) in PAN-OS firewalls, chaining it with two other vulnerabilities to breach devices in active attacks. [...]

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added two security flaws impacting Palo Alto Networks PAN-OS and SonicWall SonicOS SSLVPN to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation

If you want to avoid urgent patches, stop exposing management consoles to the public internet A flaw patched last week by Palo Alto Networks is now under active attack and, when chained with two older vulnerabilities, allows attackers to gain root access to affected systems.…

Bank Info Security 1 year, 5 months ago

Attackers Exploit Palo Alto Zero-Day Authentication Bypass

Surge in Attack Attempts Spotted After Palo Alto Networks Details and Patches FlawAttackers have stepped up efforts to exploit a vulnerability in the software that runs Palo Alto Networks firewall appliances that could give them direct access to the underlying software. Unauthenticated hackers could use PHP scripts to bypass the PAN-OS management web interface.