Massive Scanning Campaign Targets Palo Alto VPN Portals, Raising Security Concerns
Security researchers have detected an extensive scanning operation targeting Palo Alto Networks GlobalProtect VPN portals, with nearly 24,000 IP addresses probing systems. The coordinated campaign, primarily focused on US targets, suggests systematic reconnaissance potentially preceding future exploitation attempts.
New Linux Backdoor 'Auto-color' Targets Academic and Government Systems
A sophisticated Linux backdoor dubbed 'Auto-color' is actively compromising universities and government institutions across North America and Asia. The stealthy malware grants attackers extensive remote access while being notably difficult to detect and remove, featuring a kill switch that hampers forensic investigations.
Critical Vulnerabilities Allow Root Access to Palo Alto Firewalls Through Authentication Bypass
Multiple security flaws in Palo Alto Networks firewalls are being actively exploited to gain unauthorized root access. Attackers are chaining together several vulnerabilities, including a recent high-severity authentication bypass, putting sensitive system data at risk.
Critical VPN Client Vulnerabilities Allow Attackers to Deploy Malware Through Fake Servers
Security researchers have discovered severe flaws in Palo Alto Networks' GlobalProtect and SonicWall's NetExtender VPN clients that enable attackers to execute malicious code through rogue VPN servers. The vulnerabilities could allow credential theft and system compromise through unauthorized software updates with elevated privileges.
Massive Security Breach: Over 2,000 Palo Alto Networks Firewalls Compromised in Global Attack
Security researchers have uncovered 'Operation Lunar Peek', a widespread attack campaign targeting Palo Alto Networks devices worldwide. The attacks exploit critical vulnerabilities in next-generation firewall management interfaces, with over 2,000 devices already compromised across multiple countries.
CISA Mandates Critical Security Patches for LoadMaster and PAN-OS Vulnerabilities
CISA has added critical security flaws in Progress Kemp LoadMaster and Palo Alto Networks PAN-OS to its Known Exploited Vulnerabilities catalog. Federal agencies must patch these authentication bypass and privilege escalation vulnerabilities by December 2024 to prevent unauthorized system access.