GreyNoiseMay 2

GreyNoise observed a sharp and sustained decline in scanning activity targeting Palo Alto Networks GlobalProtect portals. 20,000 IPs per day. Dropped to just over 100. Analysis: https://www.greynoise.io/blog/surge-palo-alto-networks-scanner-activity

#PANOS #PaloAltoNetworks

Surge in Palo Alto Networks Scanner Activity Indicates Possible Upcoming Threats

Over the last 30 days, nearly 24,000 unique IP addresses have attempted to access these portals. The pattern suggests a coordinated effort to probe network defenses and identify exposed or vulnerable systems, potentially as a precursor to targeted exploitation.

SebastianApr 13
#PaloAltoNetworks advierte de intentos de acceso por fuerza bruta dirigidos a las puertas de enlace #PANOS #GlobalProtect
https://blogs.masterhacks.net/noticias/hacking-y-ciberdelitos/palo-alto-networks-advierte-sobre-intentos-de-fuerza-bruta-dirigidos-a-las-puertas-de-enlace-pan-os-globalprotect/
Palo Alto Networks advierte sobre intentos de fuerza bruta dirigidos a las puertas de enlace PAN-OS GlobalProtect - Masterhacks Blog

Palo Alto Networks advierte de intentos de acceso por fuerza bruta dirigidos a las puertas de enlace PAN-OS GlobalProtect

Masterhacks Blog
GreyNoiseMar 31

🚨 Surge in Palo Alto Networks Login Scanning Activity: Nearly 24,000 unique IPs have attempted access over the past 30 days. Full analysis ⬇️ https://www.greynoise.io/blog/surge-palo-alto-networks-scanner-activity

#PANOS #PaloAltoNetworks #Vulnerability

Surge in Palo Alto Networks Scanner Activity Indicates Possible Upcoming Threats

Over the last 30 days, nearly 24,000 unique IP addresses have attempted to access these portals. The pattern suggests a coordinated effort to probe network defenses and identify exposed or vulnerable systems, potentially as a precursor to targeted exploitation.

UnivoldMar 25

https://univold.com/product/palo-alto-networks-pan-pa-5260-advurl-3yr-ha2-r/

Palo Alto the Advanced URL Filtering is available on PAN-OS next-generation firewalls, Prisma Access (Cloud Managed), Cloud NGFW for AWS, and Cloud NGFW for Azure. @paloalto #panos #ngfw #prisma #aws #azure @msftnews @Amazon @Univold1

Ingrid Hoeben Ⓥ 🇧🇪Mar 13

Nog eens geluncht bij #panos … met 1 #vegan optie … beter dan geen 🤗🌱

#hummus #avocado #paprika #mangochutney

RF WaveFeb 13

#PaloAlto has released software updates to address a vulnerability in its #PANOS software

The vulnerability is tracked as CVE-2025-0108, and when exploited, allows an attacker to bypass authentication and access the management web interface

Administrators are advised to patch ASAP

#cybersecurity #vulnerabilitymanagement

https://thehackernews.com/2025/02/palo-alto-networks-patches.html

Palo Alto Networks Patches Authentication Bypass Exploit in PAN-OS Software

Palo Alto Networks patches CVE-2025-0108, a PAN-OS flaw (CVSS 7.8) allowing authentication bypass. Update now.

The Hacker News
SebastianDec 27
#PaloAltoNetworks lanzó un parche para la vulnerabilidad #DoS de #PANOS, se insta a los usuarios parchear de inmediato
https://blogs.masterhacks.net/noticias/hacking-y-ciberdelitos/palo-alto-lanza-parche-para-la-vulnerabilidad-dos-de-pan-os/
Palo Alto lanza parche para la vulnerabilidad DoS de PAN-OS - Masterhacks Blog

Palo Alto Networks lanzó un parche para la vulnerabilidad DoS de PANOS, se insta a los usuarios parchear de inmediato

Masterhacks Blog
w00pDec 26

PanOS malware gaining persistence through adding its path to the rc.local file.

https://northwave-cybersecurity.com/hubfs/LITTLELAMB%20WOOLTEA%20technical%20writeup%20Schrijver%20and%20Oudenaarden.pdf

This technique is also in my linux live analysis doc: https://w0-0p.github.io/Linux-Forensics/Live_Analysis/Live_Analysis.html

#linux #panos #malware

Daniel KeerDec 11

Here's how to fix a certificate chain on a Palo Alto firewall

https://thedxt.ca/2024/12/palo-alto-certificate-chain-fix/

#PaloAlto #PaloAltoNetworks #Firewall #Certificates #GlobalProtect #PANOS

Palo Alto Certificate Chain Fix

An issue I’ve run into on Palo Alto Networks firewalls is that everything seems to work when importing a certificate (usually a PFX). Until you start using the certificate, then after a validation or a commit, there’s a warning that the certificate chain is not correctly formed. Warning: certificate chain not correctly formed in certificate…

theDXT
Andrew RoderosDec 5
Learn how to validate IP address with prefix using an Ansible playbook for Palo Alto Networks firewall to ensure efficient network management. andrewroderos.com/palo-alto-netw… #panos #paloaltonetworks #ansible #automation #networkautomation https://andrewroderos.com/palo-alto-networks-ansible-automation/
Palo Alto Networks Ansible playbook for IP address validation | Andrew Roderos

Learn how to validate IP address with prefix using an Ansible playbook for Palo Alto Networks firewall to ensure efficient network management.

Andrew Roderos