Palo Alto Networks

vulnerability exploit

Protect Against Critical Azure Cosmos DB Vulnerability

Cloud security researchers recently discovered a critical vulnerability that exploits the Azure Cosmos DB Jupyter notebook feature to escalate access into other customer notebooks, harvest the Cosmos DB keys and access their data. Microsoft has since disabled this feature for all customers and sent out notification emails to customers that could be potentially impacted.

Cloud Security Posture Management

Points of View

Sep 17, 2021

By David Okeyode

Palo Alto Networks

Products and Services

Partners

Endpoint, Firewall, Threat Prevention

Vehicle Hacks and The Age of IoT: Breach Prevention is the Only Way Forward

With an increasing number of connected cars coming onto the market over the past several years, it was only a matter of time until we saw a complete r...

Jul 22, 2015

By Sebastian Goodwin

Threat Advisory/Analysis, Unit 42

Insecure Internal Storage in Android

Today, Palo Alto Networks researcher Claud Xiao is delivering a presentation titled “Insecure Internal Storage in Android” at the Hacks in Taiwan Conference (HITCON).

Aug 18, 2014

By Claud Xiao and Ryan Olson

Threat Advisory/Analysis, Threat Prevention

Palo Alto Networks Finds Critical Vulnerabilities in Latest Version of Inte...

This week, Palo Alto Networks researcher, Bo Qu, was credited with discovering 3 distinct critical vulnerabilities in Microsoft Internet Explorer. The...

Nov 14, 2013

By Palo Alto Networks

Threat Prevention

The Unique Challenges of Controlling Java Exploits

Java has been a very hot topic for security managers this year due to a steady stream of 0-day Java vulnerabilities that have been disclosed, with many of them being exploited in the wild. However, the challeng...

Apr 17, 2013

By Palo Alto Networks

Threat Advisories - Advisories, Threat Advisory/Analysis

Emergency Threat Content Release

Today Palo Alto Networks has released an emergency content release (version 349) that addresses critical new vulnerabilities in Java JRE as well as Adobe Reader. Exploits of the Java vulnerabilities have been observed in the wild in exploit...

Jan 11, 2013

By Palo Alto Networks

Data Center, Firewall, SCADA & ICS

SCADA and your Data Center

Over the last few months, discussions on cyberweapons targeting critical infrastructure have increased. Most of the discussions have centered around attacks to Industrial Control Systems (ICS) such as SCADA (Supervisory Control and Data Acq...

Jun 19, 2012

By Palo Alto Networks

Cybersecurity, Malware, SCADA & ICS, Threat Advisories - Advisories, Threat Prevention

Stuxnet - SCADA malware

Stuxnet is the first malware in recent history that attacked industrial control systems also known as SCADA (Supervisory Control and Data Acquisition) systems developed by Siemens (Siemens SIMATIC WinCC). These...

Oct 03, 2010

By Anna Lough

Uncategorized

Vulnerabilities Discovered for Microsoft DirectX

As some of you may know, Palo Alto Networks discovered 2 critical vulnerabilities for Microsoft DirectX which were released today via Microsoft’s July security bulletin. Successful exploitation of these critica...

Jul 15, 2009

By Alfred Lee

Threat Advisories - Advisories

New Conficker Variants

Conficker is back in the news as there are reports of new variants popping up. I'm sure that you've all heard the news and hype about how many endpoints Conficker has infected, and even more speculation on what the bot herder will do with the massive botnet. Here's some...

Mar 23, 2009

By Alfred Lee

Threat Advisories - Advisories

Heartland Corporation: Malware Causes Largest Data Breach In History

Holy Crap! Heartland, a card processing service for more that 250,000 small businesses discloses a malware generated breach on inauguration day. The scope is unfathomable. If each...

Jan 21, 2009

By Matt Keil

Threat Advisories - Advisories

Microsoft Security Bulletin - November 2008

Microsoft announced their scheduled November security bulletin today at 10am PST which covers 4 Microsoft vulnerabilities. Palo Alto Networks released coverage for the Microsoft vulnerabilities covered in the N...

Nov 11, 2008

By Alfred Lee

Threat Advisories - Advisories

Out-of-Band Microsoft Security Bulletin

Microsoft announced an unscheduled security bulletin today at 10AM PST that they have a critical vulnerability (MS08-067) which affects Windows 2000, XP, 2K3 Server, Vista, and 2K8 operating systems. This vulne...

Oct 22, 2008

By Alfred Lee

Firewall

WeBot Can Turn Any PC into a Streaming Media Server

ALERT - WeBot is an application that turns your computer into a streaming media server. WeBot allows users to gain real-time access to their digital media files at home via an Internet enabled computer. In addi...

Oct 18, 2007

By Alfred Lee

Firewall

MPack Malware Leverages SSL for Secure Transmission

ALERT - SSL (Secure Socket Layer) is a protocol designed to provide encryption with minimal to no configuration, and has been used extensively to encrypt web communications through HTTPS (HTTP in SSL). Most sec...

Aug 07, 2007

By Alfred Lee

Load more blogs