Palo Alto Networks is a organization tracked across 35 threat clusters and 43 intelligence report mentions on ThreatCluster. First observed November 16, 2025; most recent activity July 9, 2026.
Check Point Software Technologies disclosed a critical authentication bypass vulnerability (CVE-2026-50751) affecting its Remote Access VPN and Mobile Access products, with exploitation confirmed since May 7, 2026. The…
A China-linked threat actor known as Red Menshen has been conducting a long-term espionage campaign targeting global telecommunications networks using a stealthy Linux kernel backdoor called BPFdoor. This malware…
Palo Alto Networks has issued a high-priority security update for a critical vulnerability tracked as CVE-2026-0234. This flaw affects the Microsoft Teams integration within the Cortex XSOAR and Cortex XSIAM platforms.…
On November 18, 2024, Palo Alto Networks disclosed two critical vulnerabilities in PAN-OS: CVE-2024-0012 and CVE-2024-9474. CVE-2024-0012 is an authentication bypass vulnerability that allows unauthenticated attackers…
GreyNoise Intelligence has released a report indicating that spikes in malicious activity often precede the disclosure of new vulnerabilities in edge devices. The study tracked 147.8 million sessions over 103 days,…
Researchers from Palo Alto Networks have identified a significant vulnerability in Google Cloud's Vertex AI platform, which allows attackers to exploit default permissions of AI agents. This vulnerability enables…
Anthropic has announced the launch of Project Glasswing, utilizing its unreleased AI model, Claude Mythos Preview, to identify and exploit thousands of critical software vulnerabilities across major operating systems…
Between August 9 and August 17, 2025, the threat actor UNC6395 exploited stolen OAuth tokens from Salesloft's Drift integration to access Salesforce environments of over 700 organizations, including major tech firms.…
Palo Alto Networks disclosed several vulnerabilities in its PAN-OS software, including CVE-2026-0288, a buffer overflow issue that allows unauthenticated attackers to execute arbitrary code or cause denial of service.…
A significant supply chain attack has compromised Salesforce-stored data from more than 200 companies through applications published by Gainsight. Salesforce confirmed unauthorized access to customer data and is…