New Browser-in-the-Browser phishing uses fake login popups to steal Microsoft 365 credentials 2026-06-10 at 17:24 By Sinisa Markovic A new Browser-in-the-Browser (BitB) phishing campaign is targeting Microsoft 365 users with fake login popups designed to closely mimic legitimate browser authentication windows, according to Palo Alto Networks Unit 42. The attack relies on a fake browser […]
52% of direct-to-IP threats are missing from intelligence feeds 2026-06-08 at 07:00 By Anamarija Pogorelec Security tools are good at inspecting websites, domains, URLs, and files, so attackers are moving lower in the stack and communicating directly with IP addresses, where visibility is limited. According to Palo Alto Networks’ report, this creates a visibility gap
52% of direct-to-IP threats are missing from intelligence feeds Read More »
Recent Palo Alto Networks Vulnerability Exploited for Weeks 2026-06-01 at 17:37 By Ionut Arghire Hackers began exploiting CVE-2026-0257, an authentication bypass in Palo Alto Networks PAN-OS, four days after public disclosure. The post Recent Palo Alto Networks Vulnerability Exploited for Weeks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Recent Palo Alto Networks Vulnerability Exploited for Weeks Read More »
Machine identities outnumber humans 109 to 1 2026-05-14 at 07:00 By Anamarija Pogorelec Organizations manage an average of 109 machine identities for every human identity. AI agents account for a growing share of those identities, with companies expecting AI agent growth of 85% over the next 12 months. Machine identities are projected to increase by
Machine identities outnumber humans 109 to 1 Read More »
Microsoft, Palo Alto Networks Find Many Vulnerabilities by Using AI on Their Own Code 2026-05-13 at 19:01 By Eduard Kovacs Microsoft’s MDASH discovered 16 of the Patch Tuesday vulnerabilities, and Palo Alto used Mythos to find dozens of flaws. The post Microsoft, Palo Alto Networks Find Many Vulnerabilities by Using AI on Their Own Code
Microsoft, Palo Alto Networks Find Many Vulnerabilities by Using AI on Their Own Code Read More »
State-sponsored hackers likely behind zero-day attacks on Palo Alto firewalls 2026-05-08 at 01:14 By Zeljka Zorz Palo Alto Networks believes the in-the-wild exploitation of a zero-day vulnerability (CVE-2026-0300) in its firewalls is likely the work of state-sponsored threat actors. A flaw with no patch (yet) CVE-2026-0300 is a buffer overflow vulnerability in the User-ID Authentication
State-sponsored hackers likely behind zero-day attacks on Palo Alto firewalls Read More »
Palo Alto Zero-Day Exploited in Campaign Bearing Hallmarks of Chinese State Hacking 2026-05-07 at 19:01 By Eduard Kovacs The cybersecurity firm has not explicitly accused China of being behind the attack, but the evidence suggests it was. The post Palo Alto Zero-Day Exploited in Campaign Bearing Hallmarks of Chinese State Hacking appeared first on SecurityWeek.
Palo Alto Zero-Day Exploited in Campaign Bearing Hallmarks of Chinese State Hacking Read More »
Palo Alto Networks to Patch Zero-Day Exploited to Hack Firewalls 2026-05-06 at 09:24 By Eduard Kovacs CVE-2026-0300 affects the Captive Portal service of PAN-OS software on PA and VM series firewalls. The post Palo Alto Networks to Patch Zero-Day Exploited to Hack Firewalls appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View
Palo Alto Networks to Patch Zero-Day Exploited to Hack Firewalls Read More »
Palo Alto Networks, SonicWall Patch High-Severity Vulnerabilities 2026-04-09 at 15:44 By Ionut Arghire The bugs could allow attackers to modify protected resources and escalate their privileges to administrator. The post Palo Alto Networks, SonicWall Patch High-Severity Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Palo Alto Networks, SonicWall Patch High-Severity Vulnerabilities Read More »
Software supply chain hacks trigger wave of intrusions, data theft 2026-04-02 at 18:58 By Zeljka Zorz After linking the Axios npm supply chain attack to North Korean hackers, Google researchers warned that “hundreds of thousands of stolen secrets could potentially be circulating” as a result of this and the Trivy, KICS, LiteLLM, and Telnyx supply
Software supply chain hacks trigger wave of intrusions, data theft Read More »
Top product launches at RSAC 2026 2026-03-27 at 03:57 By Mirko Zorz RSAC 2026 showcased a wave of innovation, with vendors unveiling technologies poised to redefine cybersecurity. From AI-powered defense to breakthroughs in identity protection, this year’s conference delivered a glimpse into the future. Here are the most interesting products that caught our attention, and
Top product launches at RSAC 2026 Read More »
Industrial networks continue to leak onto the internet 2026-02-27 at 07:30 By Mirko Zorz Industrial operators continue to run remote access portals, building automation servers, and other operational technology services on public IP address ranges. Palo Alto Networks, Siemens, and Idaho National Laboratory describe the scope of that exposure in the Intelligence-Driven Active Defense Report
Industrial networks continue to leak onto the internet Read More »
One-time SMS links that never expire are exposing personal data for years 2026-01-23 at 08:47 By Sinisa Markovic Online services often treat one-time links sent by text message as low-risk conveniences. A new study shows that these links can expose large amounts of personal data for years. Malicious URLs continue to shift from email to
One-time SMS links that never expire are exposing personal data for years Read More »
When the Olympics connect everything, attackers pay attention 2026-01-19 at 09:19 By Anamarija Pogorelec Global sporting events bring a surge of network traffic, new systems, and short term partnerships. That mix draws attention from cyber threat actors who see opportunity in scale and distraction. A new Palo Alto Networks threat study on the Milan Cortina
When the Olympics connect everything, attackers pay attention Read More »
QR codes are getting colorful, fancy, and dangerous 2026-01-15 at 08:04 By Sinisa Markovic QR codes have become a routine part of daily life, showing up on emails, posters, menus, invoices, and login screens. Security-savvy users have learned to treat links with caution, but QR codes still carry an assumption of safety. Researchers from Deakin
QR codes are getting colorful, fancy, and dangerous Read More »
Formal proofs expose long standing cracks in DNSSEC 2025-12-23 at 09:41 By Sinisa Markovic DNSSEC is meant to stop attackers from tampering with DNS answers. It signs records so resolvers can verify that data is authentic and unchanged. Many security teams assume that if DNSSEC validation passes, the answer can be trusted. New academic research
Formal proofs expose long standing cracks in DNSSEC Read More »
Cloud security is stuck in slow motion 2025-12-23 at 08:23 By Anamarija Pogorelec Cloud environments are moving faster than the systems meant to protect them. A new Palo Alto Networks study shows security teams struggling to keep up with development cycles, growing cloud sprawl, and attacker tactics that now compress breaches into minutes instead of
Cloud security is stuck in slow motion Read More »
Palo Alto Networks, Google Cloud Strike Multibillion-Dollar AI and Cloud Security Deal 2025-12-19 at 18:44 By Mike Lennon The agreement strengthens technical and commercial ties as Palo Alto migrates workloads and adopts Google’s Vertex AI and Gemini models. The post Palo Alto Networks, Google Cloud Strike Multibillion-Dollar AI and Cloud Security Deal appeared first on
Palo Alto Networks, Google Cloud Strike Multibillion-Dollar AI and Cloud Security Deal Read More »
Gainsight breach: Salesforce details attack window, issues investigation guidance 2025-11-26 at 16:30 By Zeljka Zorz The number of Salesforce customers affected by the recent compromise of Gainsight-published applications is yet to be publicly confirmed, but Salesforce released indicators of compromise (IoCs) and simultaneously shed some light on when the attack likely started. The provided list
Gainsight breach: Salesforce details attack window, issues investigation guidance Read More »
Palo Alto Networks to Acquire Observability Platform Chronosphere in $3.35 Billion Deal 2025-11-20 at 04:32 By SecurityWeek News The move to acquire Chronosphere is the latest of several acquisitions in recent years and follows a massive $25 billion deal to acquire CyberArk. The post Palo Alto Networks to Acquire Observability Platform Chronosphere in $3.35 Billion
Palo Alto Networks to Acquire Observability Platform Chronosphere in $3.35 Billion Deal Read More »