#globalprotect — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #globalprotect, aggregated by home.social.
-
GreyNoise is tracking a coordinated credential-based campaign targeting Cisco SSL VPN and Palo Alto Networks GlobalProtect.
🔗 https://www.greynoise.io/blog/credential-based-campaign-cisco-palo-alto-networks-vpn-gateways
#Cisco #PaloAltoNetworks #GreyNoise #VPN #CiscoSSLVPN #GlobalProtect #ThreatIntel
-
my favorite part of B2B SaaS is when everything fucking works as intended. /sarcasm
-
GreyNoise reports a coordinated wave of login attempts against Palo Alto GlobalProtect portals, later expanding into scans of SonicWall SonicOS API endpoints. More than 7,000 IPs tied to 3xK GmbH infrastructure were involved.
Palo Alto Networks confirmed the activity represents credential-based probing, not a vulnerability exploit.
Defenders are encouraged to enforce MFA, track recurring client fingerprints, and apply dynamic blocking.How are you monitoring for reconnaissance patterns across VPN and firewall surfaces today?
Share your approach and follow us for more operational threat updates.#infosec #PaloAltoNetworks #SonicWall #GlobalProtect #ThreatHunting #ThreatIntel #NetworkSecurity #VPNsecurity
-
GreyNoise reports a coordinated wave of login attempts against Palo Alto GlobalProtect portals, later expanding into scans of SonicWall SonicOS API endpoints. More than 7,000 IPs tied to 3xK GmbH infrastructure were involved.
Palo Alto Networks confirmed the activity represents credential-based probing, not a vulnerability exploit.
Defenders are encouraged to enforce MFA, track recurring client fingerprints, and apply dynamic blocking.How are you monitoring for reconnaissance patterns across VPN and firewall surfaces today?
Share your approach and follow us for more operational threat updates.#infosec #PaloAltoNetworks #SonicWall #GlobalProtect #ThreatHunting #ThreatIntel #NetworkSecurity #VPNsecurity
-
GreyNoise reports a coordinated wave of login attempts against Palo Alto GlobalProtect portals, later expanding into scans of SonicWall SonicOS API endpoints. More than 7,000 IPs tied to 3xK GmbH infrastructure were involved.
Palo Alto Networks confirmed the activity represents credential-based probing, not a vulnerability exploit.
Defenders are encouraged to enforce MFA, track recurring client fingerprints, and apply dynamic blocking.How are you monitoring for reconnaissance patterns across VPN and firewall surfaces today?
Share your approach and follow us for more operational threat updates.#infosec #PaloAltoNetworks #SonicWall #GlobalProtect #ThreatHunting #ThreatIntel #NetworkSecurity #VPNsecurity
-
GlobalProtect для наших удаленных сотрудников в Бали
Если у вас есть удаленные сотрудники, которые работают удаленно где-то в Тайланде то статья для вас)
https://habr.com/ru/articles/963616/
#VPN #Paloalto #IT #информационные_технологии #itинфраструктура #GlobalProtect
-
#IngramMicro outage caused by SafePay #ransomware attack
"Sources have told BleepingComputer that it is believed the threat actors #breached Ingram Micro through its #GlobalProtect #VPN platform.
In a brief Sunday morning announcement, Ingram Micro has confirmed that they suffered a ransomware attack."
https://www.bleepingcomputer.com/news/security/ingram-micro-outage-caused-by-safepay-ransomware-attack/ -
At least the latest Windows patch only made 0.1% of our company computers completely lose all network connections.
Of course all those users called at once.
-
Here's how to fix a certificate chain on a Palo Alto firewall
https://thedxt.ca/2024/12/palo-alto-certificate-chain-fix/
#PaloAlto #PaloAltoNetworks #Firewall #Certificates #GlobalProtect #PANOS
-
Palo Alto certification validation Flaw Let Attackers Escalate Privilege https://cybersecuritynews.com/palo-alto-certificate-validation-flaw/ #CyberSecurityNews #EndpointSecurity #CyberSecurity #Vulnerability #cybersecurity #GlobalProtect #vulnerability
-
Palo Alto Networks #GlobalProtect has finally added support for #macOS #Sequoia in version 6.2.6.
-
Fake GlobalProtect VPN Downloads Used to Spread WikiLoader Malware https://hackread.com/fake-globalprotect-vpn-downloads-wikiloader-malware/ #Cybersecurity #GlobalProtect #SEOPoisoning #CyberAttack #WailingCrab #WikiLoader #Security #Malware #Scam #SEO #VPN
-
CERT-IN Warns About Critical Vulnerabilities in Palo Alto Networks Applications https://thecyberexpress.com/cert-in-vulnerabilities-palo-alto-networks/ #informationdisclosure #privilegeescalation #TheCyberExpressNews #CybersecurityNews #commandinjection #paloaltonetworks #securityadvisory #Vulnerabilities #TheCyberExpress #FirewallDaily #cybersecurity #GlobalProtect #CortexXSOAR #CERTIn #PANOS
-
CERT-IN Warns About Critical Vulnerabilities in Palo Alto Networks Applications https://thecyberexpress.com/cert-in-vulnerabilities-palo-alto-networks/ #informationdisclosure #privilegeescalation #TheCyberExpressNews #CybersecurityNews #commandinjection #paloaltonetworks #securityadvisory #Vulnerabilities #TheCyberExpress #FirewallDaily #cybersecurity #GlobalProtect #CortexXSOAR #CERTIn #PANOS
-
CERT-IN Warns About Critical Vulnerabilities in Palo Alto Networks Applications https://thecyberexpress.com/cert-in-vulnerabilities-palo-alto-networks/ #informationdisclosure #privilegeescalation #TheCyberExpressNews #CybersecurityNews #commandinjection #paloaltonetworks #securityadvisory #Vulnerabilities #TheCyberExpress #FirewallDaily #cybersecurity #GlobalProtect #CortexXSOAR #CERTIn #PANOS
-
We are getting more reports of exploit attempts for the PAN GlobalProtect vulnerability (CVE-2024-3400). #paloaltonetworks #pan #globalprotect
-
Here's a method to help secure GlobalProtect. This can help against CVE-2024-3400
#PaloAlto #vulnerability #GlobalProtect #OperationMidnightEclipse
-
#PaloAlto releases patches for CVE-2024-3400 Critical Command Injection #vulnerability in #GlobalProtect VPN:
-
Palo Alto Networks #GlobalProtect 0day exploited since at least March 26 - https://www.bleepingcomputer.com/news/security/palo-alto-networks-zero-day-exploited-since-march-to-backdoor-firewalls/ #paloaltonetworks #commandinjection #vulnerability #infosec #cybersecurity #cve20243400
-
📬 GlobalProtect von Palo Alto Networks anfällig für Hacker
#Cyberangriffe #Datenschutz #ITSicherheit #CVE20243400 #GlobalProtect #PaloAltoNetworks #PANOS #Volexity https://sc.tarnkappe.info/bf6b73 -
CVE-2024-3400 PAN-OS: OS Command Injection #Vulnerability in #GlobalProtect Gateway
A command injection vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated attacker to execute arbitrary code with root privileges on the firewall.
This issue will be fixed in hotfix releases of PAN-OS 10.2.9-h1 (ETA: By 4/14), PAN-OS 11.0.4-h1 (ETA: By 4/14), and PAN-OS 11.1.2-h3 (ETA: By 4/14), and in all later PAN-OS versions.
ref: https://security.paloaltonetworks.com/CVE-2024-3400 #paloaltonetworks #commandinjection #vulnerability #infosec #cybersecurity #cve20243400
-
So to access my corporate stuff we use #zscaler but there's one part of our system that is still behind #globalprotect which makes it weird having both open and connected.
Goes along, I guess, with having so many different apps for apps for meetings
-
#Globalprotect vpn will NOT run on #RockyLinux 9.x no matter what I try, it always complains about the routers certificate, even importing the cert does nothing, even though it says it took it just fine. Frustrating..
(just a rant)