CVE-2026-0300: Palo Alto Networks Firewall Zero-Day
Palo Alto Networks warns of a critical-severity unpatched vulnerability in the PAN-OS User-ID Authentication Portal, tracked as CVE-2026-0300, which is being exploited in attacks.
Anthropic's Claude Mythos model has identified over 23,000 potential vulnerabilities across 1,000 open source software projects, with nearly 3,900 critical and high-severity issues expected to be confirmed.
Palo Alto Networks warns of a critical-severity unpatched vulnerability in the PAN-OS User-ID Authentication Portal, tracked as CVE-2026-0300, which is being exploited in attacks.
A sophisticated Linux backdoor, Quasar Linux RAT, has been identified to steal developer credentials across the software supply chain.
A defense technology company exposed user records and military training materials through API endpoints lacking authorization checks, affecting hundreds of user records and sensitive course information.
DAEMON Tools devs confirm breach, release malware-free version after supply chain attack trojanized software, impacting thousands of systems worldwide.
Ransomware attacks often succeed even when backups exist, as attackers target and destroy backup systems before launching encryption, making recovery impossible.
Australia has launched a Cyber Incident Review Board to conduct independent reviews of major cyberattacks, focusing on systemic lessons rather than individual culpability.
A new Linux malware, Quasar Linux, targets software developers with rootkit, backdoor, and credential-stealing capabilities, enabling potential supply-chain attacks.
CISA is urging critical infrastructure owners to plan for delivering essential services under emergency conditions, potentially for months, due to threats from state-sponsored hackers.
Germany's federal cabinet has advanced legislation to expand law enforcement use of surveillance technology, including automated biometric image matching against publicly available internet data.