Sunday, 7 December, 2025
Widespread Attacks Target Palo Alto GlobalProtect VPN Portals
Hackers are launching extensive attacks on Palo Alto Networks' GlobalProtect VPN portals, originating from over 7,000 unique IP addresses. The campaign exploits exposed gateways, particularly via UDP port 4501, to probe for misconfigurations and deploy exploits, including those mimicking the critical CVE-2024-3400 flaw. Palo Alto Networks urges users to immediately enforce MFA and apply the latest security patches.
Read full story at Cybersecurity News