GreyNoise observed a spike in scanning throughout March 2025Thousands of IP addresses were scanning PAN-OS GlobalProtect ...

Threat intelligence startup GreyNoise said in a blog post on Tuesday that it had observed a “notable resurgence of ...

In May 2024, security researchers from Assetnote found vulnerabilities, tracked as CVE-2024-4879, CVE-2024-5178, and CVE-2024-5217, which ServiceNow patched the same day. However, ...

GreyNoise warns of a coordinated effort probing the internet for potentially vulnerable Palo Alto Networks GlobalProtect instances.

A significant spike in scanning activity targeting Palo Alto Network GlobalProtect login portals has been observed, with ...

Researchers are tracking a significant surge in login scanning activity targeting Palo Alto Networks (PAN) firewalls.

Attack attempts via CVE-2025-24813 are underway, but successful attacks require specific, non-default configurations, ...

Threat intelligence company GreyNoise warns that a critical PHP remote code execution vulnerability that impacts Windows systems is now under mass exploitation. Tracked as CVE-2024-4577 ...

Exploitation of a critical-severity vulnerability affecting Windows-based PHP installations has impacted organizations in the U.S., according to a researcher at threat intelligence firm GreyNoise.

Cisco Talos recently found a bug in PHP-CGI, being used in attacks against Japanese firms GreyNoise said the attacks are being seen worldwide, and called for "immediate action" A patch was ...

As DrayTek routers around the world randomly reboot for no apparent reason, security researchers have spotted hackers ...

The botnet, tracked as Eleven11bot, is being used to launch brute force attacks against login systems and exploiting weak and default passwords on IoT devices, according to GreyNoise. More than 60 ...