I’M UNDER A CYBER ATTACK

Alert

Alert 2024-50: Critical Vulnerability in Palo Alto Expedition

Palo Alto Networks has issued a warning about several critical vulnerabilities in its Expedition tool, which is used to migrate firewall configurations. These vulnerabilities allow attackers to take control of administrative accounts in PAN-OS firewalls, gaining access to sensitive information such as usernames, plaintext passwords, device configurations, and API keys.

To mitigate these risks, Palo Alto recommends updating Expedition to version 1.2.96 or higher and rotating all affected credentials, including usernames, passwords, and API keys. Additionally, it is recommended to restrict network access to authorized users and hosts only.

For more information and patches, you can visit the official Palo Alto Networks website.

Download PDF

WE’RE HERE TO HELP

Are you under a cyber attack?

Report it here

get the latest alerts in your inbox

Subscribe to our newsletter

We are a a group of highly trained professionals based in R&D with advanced technical knowledge and experience in the detection, analysis, containment, and recovery of security incidents.

We are a CSIRT, we are Cybolt.

I’M UNDER A CYBER ATTACK

Explore

Services

Stay updated

© 2024. Beacon Lab CSIRT, Privacy Policy

This site is registered on wpml.org as a development site. Switch to a production site key to remove this banner.