#state-sponsored-threat

[ follow ]
#cve-2026-0300 #remote-code-execution #pan-os-security #vulnerability-mitigation #sonicwall
Information security
fromThe Hacker News
5 days ago

PAN-OS RCE Exploit Under Active Use Enabling Root Access and Espionage

Palo Alto Networks disclosed CVE-2026-0300, a critical buffer overflow vulnerability in PAN-OS User-ID Authentication Portal allowing unauthenticated remote code execution, with exploitation attempts detected since April 9, 2026.
fromTheregister
6 months ago

SonicWall blames state-backed crew for September breach

SonicWall has blamed an unnamed, state-sponsored collective for the September break-in that saw cybercriminals rifle through a cache of firewall configuration backups. The network security vendor said it spotted "suspicious activity" in early September involving the unauthorized downloading of backup firewall configuration files from "a specific cloud environment." The company initially said that "fewer than 5 percent" of its firewall installed base had files accessed,
Information security
[ Load more ]