heise online

Palo Alto Globalprotect: Malicious code weakness via weak certificate validation

Palo Alto Networks Globalprotect app is used to establish VPN connections. A vulnerability allows attackers to inject malicious code and install it on vulnerable computers with elevated privileges. In ...
Bleeping Computer

New wave of VPN login attempts targets Palo Alto GlobalProtect portals

A campaign has been observed targeting Palo Alto GlobalProtect portals with login attempts and launching scanning activity against SonicWall SonicOS API endpoints. The activity started on December 2nd ...
heise online

Palo Alto Networks: Vulnerabilities in PAN-OS jeopardize firewalls

Attackers can exploit several vulnerabilities in PAN-OS from Palo Alto Networks and attack firewalls. The developers have also closed a gap in the GlobalProtect app. Admins can find further ...