“Palo Alto Networks has identified a threat activity that exploits an unauthorized remote command vulnerability against a limited number of Internet-exposed firewalls,” Palo Alto Networks said in another update, adding that “We do not have sufficient information at any time. at this time.”
If compromise is feared, customers are advised to monitor suspicious activity such as unknown changes to configuration or users.
As additional remedies, all Expedition and firewall usernames, passwords, and API keys must be changed, Expedition software must be disabled, and network access to Expedition must be restricted to authorized users, hosts, or networks, the company it added.
Source link