Topic: scanning activity

Sort by: Relevance | Date
  • Palo Alto Networks Login Portals Under Massive Attack Surge
    October 5, 2025
    92%

    Palo Alto Networks Login Portals Under Massive Attack Surge

    A dramatic 500% surge in suspicious network scans is targeting Palo Alto Networks login portals, with over 1,285 unique IPs involved, indicating a coordinated reconnaissance campaign. The majority of scanning IPs originated from the U.S., with clusters focusing on targets in the U.S. and Pakistan...

    Read More »
  • Major Firewall Vendors Hit in Coordinated Cyberattack
    October 11, 2025
    90%

    Major Firewall Vendors Hit in Coordinated Cyberattack

    A coordinated cyberattack is targeting Cisco, Palo Alto Networks, and Fortinet devices, with all exploitation campaigns originating from identical subnets, indicating a unified threat actor. The attacks began in early September, exploiting zero-day vulnerabilities in Cisco devices and causing a 5...

    Read More »
  • Urgent CISA Alert: Active Oracle Identity Manager RCE Exploits
    November 23, 2025
    80%

    Urgent CISA Alert: Active Oracle Identity Manager RCE Exploits

    A critical security vulnerability (CVE-2025-61757) in Oracle Identity Manager allows attackers to execute remote code without authentication by exploiting weaknesses in REST API security filters. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has mandated federal agencies to pat...

    Read More »

Related Topics

greynoise intelligence (2) threat actors (2) brute force attacks (1) technical report (1) security recommendations (1) federal agencies (1) cisco vulnerabilities (1) zero-day vulnerabilities (1)