Palo Alto Networks

Palo Alto Networks execs apologize for 'hostesses' dressed as lamps at Black Hat booth

Biz admits turning human women into faceless, sexualized furniture was a 'tone deaf' marketing ploy

Security14 Aug 2024 | 202

Six ransomware gangs behind over 50% of 2024 attacks

Plus many more newbies waiting in the wings

Cyber-crime13 Aug 2024 |

Exploit code for Palo Alto Networks zero-day now public

Race on to patch as researchers warn of mass exploitation of directory traversal bug

Security17 Apr 2024 | 3

Zero-day exploited right now in Palo Alto Networks' GlobalProtect gateways

Out of the PAN-OS and into the firewall, a Python backdoor this way comes

Cyber-crime12 Apr 2024 | 13

Palo Alto investor sues over 28% share tumble

Updated Lawsuit alleges it misled investors with claims new AI products were 'facilitating greater platformization' and more

Security28 Feb 2024 | 23

New kids on the ransomware block in 2023: Akira and 8Base lead dozens of newbies

How good are your takedowns when fresh gangs are linked to previous ops, though?

Research06 Feb 2024 | 1

North Korea makes finding a gig even harder by attacking candidates and employers

That GitHub repo an interviewer wants you to work on could be malware

Cyber-crime23 Nov 2023 | 6

Cryptojackers steal AWS credentials from GitHub in 5 minutes

Researchers just scratching surface of their understanding of campaign dating back to 2020

Research30 Oct 2023 | 3

Infosec imposter syndrome is real. Here's something that can help

Black Hat Talk about an insider threat

Black Hat and DEF CON10 Aug 2023 | 9

Plugging the infosec holes before the bad guys can sneak in

RSA Conference 2023 Security posture management gets its due at RSA

Spotlight on RSA01 May 2023 | 2

Keep calm and carry on when the supply chain goes up in flames

RSA Conference 2023 Lessons learned from the front-line responders

Spotlight on RSA28 Apr 2023 |

PlugX RAT masquerades as legit Windows debugger to slip past security

DLL side-loading does the trick, again

Security01 Mar 2023 | 3

Want to detect Cobalt Strike on the network? Look to process memory

Security analysts have tools to spot hard-to-find threat, Unit 42 says

Security06 Dec 2022 |

Upstart Ransom Cartel linked to REvil veterans

Lesser of two REvils? There’s a relationship, say infosec bods, but not enough to say one evolved into the other

Cyber-crime18 Oct 2022 | 4

Palo Alto bug used for DDoS attacks and there's no fix yet

There goes the weekend...

Security12 Aug 2022 | 5

Near-undetectable malware linked to Russia's Cozy Bear

The fun folk who attacked Solar Winds using a poisoned CV and tools from the murky world of commercial hackware

Research06 Jul 2022 | 64

Chinese-sponsored gang Gallium upgrades to sneaky PingPull RAT

Broadens targets from telecoms to finance and government orgs

Research14 Jun 2022 | 2

HelloXD ransomware bulked up with better encryption, nastier payload

Russian-based group doubles the extortion by exfiltrating the corporate data before encrypting it.

Security13 Jun 2022 | 5

Suspected phishing email crime boss cuffed in Nigeria

Interpol, cops swoop with intel from cybersecurity bods

Cyber-crime26 May 2022 | 7

Don’t expect to get your data back from the Onyx ransomware group

The cybercriminals trash files larger than 2MB, forever losing them to the void

Security29 Apr 2022 | 13

REvil resurrected? Ransomware crew appears to be back. Keyword: Appears

Months after arrests, gang – or someone mimicking them – now active

Cyber-crime22 Apr 2022 | 9

AWS's Log4j patches blew holes in its own security

Remote code exec is so 2014. Have this container escape and privilege escalation, instead

Patches20 Apr 2022 | 10

Microsoft details how China-linked crew's malware hides scheduled Windows tasks

All so that it can maintain backdoor access across reboots

Security14 Apr 2022 | 22

Unit 42: Ransomware demands we're aware of averaged $2.2m last year

Conti, REvil declared most active criminal gangs

Security25 Mar 2022 | 3

Ukraine invasion: This may be the quiet before the cyber-storm, IT staff warned

Updated Now is the time to be a prepper – the computer security kind

Security09 Mar 2022 | 30

Palo Alto Networks patches 9.8 severity CVE in popular GlobalProtect product

Updated Arbitrary code execution by unauthenticated attacker? Big oops

Security11 Nov 2021 | 7

Report sheds light on 'cocky' but 'creative' Mespinoza ransomware group

Palo Alto's Unit 42 rejects claims group has shifted to ransomware-as-a-service

Security15 Jul 2021 | 2

Report shines light on REvil's depressingly simple tactics: Phishing, credential-stuffing RDP servers... the usual

And those multimillion-dollar payouts

Security07 Jul 2021 | 5

Siloscape malware targets Windows containers, breaks through to the underlying Kubernetes cluster

Using techniques Microsoft had previously considered 'not a vulnerability'

Security08 Jun 2021 | 3

Miscreants started scanning for Exchange Hafnium vulns five minutes after Microsoft told world about zero-days

Being slow to patch just means you'll get pwned faster

Security19 May 2021 | 16

Scammers tried slurping folks' login details through 70,000 coronavirus-themed phishing URLs during 2020

Palo Alto Networks lays bare a year of dastardly digital doings

Security24 Mar 2021 | 3

Palo Alto Networks drops $156m to absorb DevSecOps firm Bridgecrew

Open-source stuff stays for now, company promises

Security17 Feb 2021 | 1

Google binned two apps by China’s Baidu, which says researchers got it wrong by linking it to personal info leaks

UPDATED Palo Alto Networks spotted subscriber IDs and MAC addresses on the move

Applications25 Nov 2020 | 15

Palo Alto Networks threatens to sue security startup for comparison review, says it breaks software EULA

'I'm not going to be bullied by someone with deeper pockets' vows Orca boss

Security23 Oct 2020 | 39

If you haven't potentially exposed 1000s of customers once again with networking vulns, step forward... Not so fast, Palo Alto Networks

Getting to be a real PAN in the OS

Security09 Jul 2020 | 6

US govt warns foreign hackers 'will likely try to exploit' critical firewall bypass bug in Palo Alto gear – patch now

Bogus signatures may fool your corp network's gatekeeper

Networks30 Jun 2020 | 3

The Internet of Things is a security nightmare, latest real-world analysis reveals: Unencrypted traffic, network crossover, vulnerable OSes

And the best part of it? Hospitals are most at risk

Edge + IoT11 Mar 2020 | 38

IT isn't supposed to stand for Insider Trading... Palo Alto Networks sysadmin and pals accused of $7m shares caper

Techie allegedly fed secret financial info to buddies ahead of public release

Networks18 Dec 2019 | 11

Fancy a career exposing cloud data leaks? Great news, companies are still largely clueless

Unit 42 crew tours the cloud security hellscape, finds admins have learned nothing

SaaS16 Aug 2019 | 13

Org's network connect to GitHub and Pastebin much? It's a Rocke road to cryptojacking country

You might also be slurping Chinese malware

Security01 Aug 2019 | 5

Fancy Bear hacker crew Putin dirty RATs in Word documents emailed to govt orgs – report

Disguised as files about recent Lion Air crash, no less

Security21 Nov 2018 | 25

Palo Alto Networks buys security startup Redlock for $173m

Threat detection outfit gets new owners

Networks04 Oct 2018 |

Palo Alto Networks' new boss hints at borging rivals as losses shrink

And they're sitting on a giant cash pile, much to chief exec Nikesh Arora's glee

Networks07 Sep 2018 | 2

Palo Alto Networks rattles tin, wants $1.5bn for, er, stuff and things

Loan notes to build war chest – yet firm denies it's eyeing up a fresh buyout

Security12 Jul 2018 | 8

Palo Alto names new CEO: Former Googler Nikesh Arora

He's heard of security but groks the cloud at scale and that's what matters

On-Prem05 Jun 2018 |

Everybody without Android Oreo vulnerable to overlay attack

'Toast' micro-messages can burn just about every Android users

Security11 Sep 2017 | 72

Recruiters considered really harmful: Devs on GitHub hit with booby-trapped fake job emails

All the more reason to reject new_position_offer.docx

Security30 Mar 2017 | 11

Palo Alto Networks buys LightCyber for $105m

No, not the fictional energy sword, the machine learning hacker sniffer

Security01 Mar 2017 | 2

ServiceNow pals up with Palo Alto and ties up with Tanium

Security ops service adds more sources telling you when to panic, and how much

Software03 Feb 2017 |

Palo Alto reveals critical bugs and March 16th patch deadline

Researcher who found the flaws will reveal crim-friendly details in three weeks

Security25 Feb 2016 | 3

Finding NEMEA: NetApp loses northern Europe chief

More change ONTAP at NetApp

Channel11 Jan 2016 | 5

Palo Alto Networks boxes spray firewall creds across the net

Crummy configurations to blame, Moore hardening offered as remedy

Channel21 Oct 2014 | 2

Palo Alto Networks splashes $US200 million on Cyvera

Israeli TRAPS the prize as PAN boosts endpoint protection portfolio

On-Prem25 Mar 2014 | 2

Juniper jury sinks Palo Alto Networks case, for now

Mistrial leaves firewall vendor burning

Channel12 Mar 2014 |

Juniper, Palo Alto to square off over firewall tech

Trial to proceed late February

Legal10 Feb 2014 |

Palo Alto Networks snaps up NSA-trained security company

Stealthy Morta Security sniffs cash, docks with security appliance maker

On-Prem07 Jan 2014 | 2