Palo Alto Firewall Fiasco: Over 2,000 Devices Compromised by Zero-Day Exploits

Thousands of Palo Alto Networks firewalls were hacked due to exploits of recently patched zero-day vulnerabilities. Attackers bypassed authentication, gaining admin privileges and installing web shells for persistent access. The zero-day vulnerabilities, CVE-2024-0012 and CVE-2024-9474, have been added to CISA’s Known Exploited Vulnerabilities catalog.

3P
Published: November 22, 2024 7:02 amAdded: November 21, 2024 at 11:12 pmAssembled by: The Editor
Pro Dashboard

Hot Take:

Well, it seems like someone left the firewall gates wide open, and the hackers came in faster than a cat on a hot tin roof! Palo Alto Networks is now the latest victim of the zero-day vulnerability express, with over 2,000 firewalls compromised. Note to self: when patching vulnerabilities, make sure to keep the door shut until you’re done!

Key Points:

  • More than 2,000 Palo Alto Networks firewalls compromised using zero-day vulnerabilities.
  • The vulnerabilities in question are CVE-2024-0012 and CVE-2024-9474 in PAN-OS.
  • Exploits allow attackers to gain administrative or root privileges.
  • Most compromised devices are located in the US and India.
  • CISA added the vulnerabilities to its Known Exploited Vulnerabilities catalog.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?