all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Zero-Day Exploitation of Unauthenticated Remote Code Execution Vulnerability in GlobalProtect (CVE-2024-3400)

Add to bookmarks
April 12, 2024, 5:05 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

On April 10, 2024, Volexity identified zero-day exploitation of a vulnerability found within the GlobalProtect feature of Palo Alto Networks PAN-OS at one of its network security monitoring (NSM) customers. Volexity received alerts regarding suspect network traffic emanating from the customer’s firewall. A subsequent investigation determined the device had been compromised. The following day, April 11, 2024, Volexity observed further, identical exploitation at another one of its NSM customers by the same threat actor.



Volexity would like to thank Palo …

alerts alto april code code execution customer customers cve cve-2024 cve-2024-3400 device exploitation feature firewall found globalprotect investigation monitoring network networks network security network security monitoring network traffic nsm palo palo alto palo alto networks palo alto networks pan-os pan pan-os remote code remote code execution security security monitoring traffic unauthenticated volexity vulnerability zero-day

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Navigating the cybersecurity career maze an hour ago | malware.news
article career careers cyber +12
The Top 11 Legal Industry Cyber Attacks an hour ago | malware.news
addition attack attacks breach +13
Sophos named a Leader in the 2024 IDC MarketScape for Worldwide Managed Detection and Response … an hour ago | malware.news
and response article business capabilities +14
Another Day, Another NAS: Attacks against Zyxel NAS326 devices CVE-2023-4473, CVE-2023-4474, (Tue, Apr 30th) 2 hours ago | malware.news
article attacks cve devices +13
LABScon23 Replay | From Vulkan to Ryazan – Investigative Reporting from the Frontlines of Infosec 2 hours ago | malware.news
called campaigns companies critical +19
Defending infrastructure, securing systems key to CISA's new AI guidelines 2 hours ago | malware.news
article artificial artificial intelligence benefits +14
Announcing the General Availability of Spectra Detect v5.0: Enhancing File Analysis for Advanced Threat Detection 3 hours ago | malware.news
advanced advanced threat advanced threat detection analysis +22
ReversingLabs Hashing Algorithm 3 hours ago | malware.news
algorithm algorithms allowlisting applications +15
How to Stop Phishing Attacks Being Missed 3 hours ago | malware.news
attachments attackers attacks business +18

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Threat Analysis Engineer

@ Gen | IND - Tamil Nadu, Chennai
View on infosec-jobs.com

Head of Security

@ Hippocratic AI | Palo Alto
View on infosec-jobs.com

IT Security Vulnerability Management Specialist (15.10)

@ OCT Consulting, LLC | Washington, District of Columbia, United States
View on infosec-jobs.com

Security Engineer - Netskope/Proofpoint

@ Sainsbury's | Coventry, West Midlands, United Kingdom
View on infosec-jobs.com

Journeyman Cybersecurity Analyst

@ ISYS Technologies | Kirtland AFB, NM, United States
View on infosec-jobs.com
View more jobs