#BSI WID-SEC-2025-1063: [NEU] [mittel] #PaloAlto #Networks #GlobalProtect: Mehrere Schwachstellen

Ein lokaler Angreifer kann mehrere Schwachstellen in PaloAlto Networks GlobalProtect ausnutzen, um seine Privilegien zu erhöhen, und um einen Denial of Service Angriff durchzuführen.

https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1063

Warn- und Informationsdienst

Palo Alto Networks advierte sobre intentos de fuerza bruta dirigidos a las puertas de enlace PAN-OS GlobalProtect - Masterhacks Blog

Palo Alto Networks advierte de intentos de acceso por fuerza bruta dirigidos a las puertas de enlace PAN-OS GlobalProtect

Masterhacks Blog
Palo Alto Networks reports increased brute-force attacks targeting GlobalProtect gateways; no known vulnerabilities exploited. #Cybersecurity #GlobalProtect #BruteForce

More details: https://securityaffairs.com/176446/hacking/brute-force-login-attempts-on-pan-os-globalprotect.html - https://www.flagthis.com/news/13053
Palo Alto warns of brute-force login attempts on PAN-OS GlobalProtect gateways indicating possible upcoming attacks

Experts warn of brute-force login attempts on PAN-OS GlobalProtect gateways following increased scanning activity on its devices

Security Affairs
Palo Alto warns of brute-force login attempts on PAN-OS #GlobalProtect gateways indicating possible upcoming Attacks
https://securityaffairs.com/176446/hacking/brute-force-login-attempts-on-pan-os-globalprotect.html
#securityaffairs #hacking
Palo Alto warns of brute-force login attempts on PAN-OS GlobalProtect gateways indicating possible upcoming attacks

Experts warn of brute-force login attempts on PAN-OS GlobalProtect gateways following increased scanning activity on its devices

Security Affairs
Nearly 24,000 IPs behind wave of Palo Alto Global Protect scans

A significant spike in scanning activity targeting Palo Alto Network GlobalProtect login portals has been observed, with researchers concerned it may be a prelude to an upcoming attack or flaw being exploited.

BleepingComputer

Any of your employers use #GlobalProtect? Are you also getting this popup multiple times a day?

Gold standard for bad #UIUX choices there.

Firstly, what's the value in knowing this? There's no action to take. Or, rather, SHOULD be no action to take (we have to dismiss the popup).

Secondly, it's conditioning us to ignore notifications from the tool. If there ever IS a problem everyone is going to ignore the warning.

At least the latest Windows patch only made 0.1% of our company computers completely lose all network connections.

Of course all those users called at once.

#Windows #Windows11 #GlobalProtect #VPN

Palo Alto Certificate Chain Fix

An issue I’ve run into on Palo Alto Networks firewalls is that everything seems to work when importing a certificate (usually a PFX). Until you start using the certificate, then after a validation or a commit, there’s a warning that the certificate chain is not correctly formed. Warning: certificate chain not correctly formed in certificate…

theDXT

#BSI WID-SEC-2024-3546: [NEU] [mittel] #PaloAlto #Networks #GlobalProtect: Schwachstelle ermöglicht Privilegieneskalation

Ein lokaler Angreifer kann eine Schwachstelle in PaloAlto Networks GlobalProtect ausnutzen, um seine Privilegien zu erhöhen.

https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3546

Warn- und Informationsdienst

Palo Alto Networks #GlobalProtect has finally added support for #macOS #Sequoia in version 6.2.6.