Palo Alto Networks Blog

Threat Brief: Operation Lunar Peek, Activity Related to CVE-2024-...

We detail the observed limited activity regarding authentication bypass vulnerability CVE-2024-0012 affecting specific versions of PAN-OS software, and include ...

November 22, 2024

By Unit 42

Threat Research Vulnerabilities

Your Connection, Their Cash: Threat Actors Misuse SDKs to Sell Yo...

A campaign leverages CVE-2024-36401 to stealthily monetize victims' bandwidth where legitimate software development kits (SDKs) are deployed for passive income....

August 21, 2025

By Zhibin Zhang , Yiheng An , Chao Lei , Haozhe Zhang

General Insights Learning Hub

Logit-Gap Steering: A New Frontier in Understanding and Probing L...

New research from Unit 42 on logit-gap steering reveals how internal alignment measures can be bypassed, making external AI security vital....

August 20, 2025

By Tony Li , Hongliang Liu

Business Email Compromise Threat Research

Fashionable Phishing Bait: GenAI on the Hook

GenAI-created phishing campaigns misuse tools ranging from website builders to text generators in order to create more convincing and scalable attacks....

August 19, 2025

By Zeyu You , Beliz Kaleli , Lucas Hu , Wei Wang

Learning Hub Malware

A Mega Malware Analysis Tutorial Featuring Donut-Generated Shellc...

A beginner-friendly tutorial on analyzing .NET malware teaches you how to use common tools, recognize techniques and understand infection chains. ...

August 14, 2025

By Lauren Che , Zong-Yu Wu

General Insights Learning Hub

Muddled Libra’s Strike Teams: Amalgamated Evil

A look at the variance within Muddled Libra (aka Scattered Spider, Octo Tempest). Its lack of structure creates multiple teams with distinct skill sets....

August 12, 2025

By Kristopher Russo

Threat Research Vulnerabilities

Keys to the Kingdom: Erlang/OTP SSH Vulnerability Analysis and Ex...

CVE-2025-32433 allows for remote code execution in sshd for certain versions of Erlang programming language’s OTP. We reproduced this CVE and share our findin...

August 11, 2025

By Adam Robbie , Yiheng An , Malav Vyas , Cecilia Hu , Matthew Tennis , Hugo Perez , Zhanhao Chen , Rick Wyble

Malware Threat Research

New Infection Chain and ConfuserEx-Based Obfuscation for DarkClou...

DarkCloud Stealer's delivery has shifted. We explore three different attack chains that use ConfuserEx obfuscation and a final payload in Visual Basic 6....

August 7, 2025

By Pranay Kumar Chhaparwal , Benjamin Chang , Lee Wei Yeong

Cortex XDR oferece 100% de detecção inigualável na 6ª rodada do MITRE ATT&CK

Latest Blogs

Líder no Magic Quadrant™ da Gartner® 2024 em EPP

A Forrester nomeia a Palo Alto Networks como líder em Gerenciamento de supe...

A Forrester nomeia a Palo Alto Networks como líder em XDR

Testando os limites de desempenho e flexibilidade do firewall

Supere os adversários com o PAN-OS 11.1 Cosmos e o Strata Cloud Manager

APENAS o Cortex oferece 100% de proteção e detecção no MITRE Engenuity

Popular Topics

Corporate Blogs

Cortex XDR oferece 100% de detecção inigualável na 6ª rodada do MITRE ATT&#...

O que vem a seguir para o Prisma SASE com as inovações alimentadas por inte...

4 Etapas práticas para segurança "Shift Left"

Sete princípios orientadores para selecionar a solução certa de segurança d...

Todas as camadas são criadas de formas diferentes

Como ajudar os analistas do SOC a lutarem contra a "fadiga de alertas"

O Cortex XDR e o Traps superaram seu desempenho na Avaliação MITRE

Network Security Blogs