Nearly 24,000 IPs behind wave of Palo Alto Global Protect scans
A significant spike in scanning activity targeting Palo Alto Network GlobalProtect login portals has been observed, with ...
Mass login scans of PAN GlobalProtect portals surge
Nearly 24K unique IP addresses have attempted to access portals in the last 30 days, raising concerns of imminent attacks ...
Why is someone mass-scanning Juniper and Palo Alto Networks products?
Someone or something is probing devices made by Juniper Networks and Palo Alto Networks, and researchers think it could be ...
Hackaday10h
This Week In Security: Target Coinbase, Leaking Call Records, And Microsoft Hotpatching
We know a bit more about the GitHub Actions supply chain attack from last month. Palo Alto’s Unit 42 has been leading the ...
SecurityWeek3d
Hackers Looking for Vulnerable Palo Alto Networks GlobalProtect Portals
GreyNoise warns of a coordinated effort probing the internet for potentially vulnerable Palo Alto Networks GlobalProtect instances.
The Hacker News2d
Nearly 24,000 IPs Target PAN-OS GlobalProtect in Coordinated Login Scan Campaign
IPs scanned Palo Alto GlobalProtect portals in late March, signaling systemic recon before potential exploits.
Hackers are ramping up attacks using year-old ServiceNow security bugs to target unpatched systems
Threat intelligence startup GreyNoise said in a blog post on Tuesday that it had observed a “notable resurgence of ...
Critical Apache Tomcat RCE vulnerability exploited
Attack attempts via CVE-2025-24813 are underway, but successful attacks require specific, non-default configurations, ...
CSO Online23h
Surge in threat actors scanning Juniper, Cisco, and Palo Alto Networks devices
A surge in internet probes targeting devices from Juniper Networks, Cisco Systems, and Palo Alto Networks should put their ...
Palo Alto Networks gateways facing huge number of possible security attacks
GreyNoise observed a spike in scanning throughout March 2025 Thousands of IP addresses were scanning PAN-OS GlobalProtect ...
SecurityWeek9d
Vulnerability Exploitation Possibly Behind Widespread DrayTek Router Reboots
DrayTek routers around the world are rebooting and the vendor’s statement suggests that it may involve the exploitation of a ...