Palo Alto Networks

OpenSSL

OpenSSL Vulnerability Rating Downgraded to High

On Tue Oct 25, the OpenSSL project team released an advisory announcing the forthcoming release of OpenSSL version 3.0.7. The advisory was issued to call attention to a critical vulnerability in OpenSSL versions between 3.0.0 and 3.0.6. The OpenSSL 3.0.7 release will be available on Tuesday, November 1, 2022. The Prisma Cloud security research team is actively monitoring the vulnerability and security fix release....

Announcement

Cloud Workload Protection

DevSecOps

Web Application & API Security

Oct 29, 2022

By Hari Srinivasan, Daniel Prizmant, Taylor Smith and Ariel Zelivansky

Palo Alto Networks

Products and Services

Partners

Endpoint, Threat Prevention, Unit 42

Code to Trigger MS14-066 ECDSA Server BOF Vulnerability

Microsoft recently released a patch for a critical vulnerability in Microsoft Secure Channel (aka Schannel). This vulnerability is being referred to as MS14-066.

Dec 04, 2014

By IPS Team

Cybersecurity, Malware, Threat Advisories - Advisories, Threat Advisory/Analysis, Threat Prevention, Unit 42

Examining the CHS Breach and Heartbleed Exploitation

Yesterday, TrustedSec, a security consultancy based on Ohio, wrote that the recent breach at Community Health Systems (CHS) was the result of exploita...

Aug 20, 2014

By Ryan Olson

Cybersecurity, Firewall

SSL-Capable Applications Consistent Among Regions

Last week we reviewed subtle differences in application usage among enterprises in different regions, based on the data in our 2014 Application Usage and Threat Report. A number of you have asked if we noticed...

Jun 23, 2014

By Chad Berndtson

Cybersecurity, Reports

A Knowledge Gap When It Comes to SSL On Your Network

How much do you really know about the use of SSL encryption by applications running on your network? It's probably more widespread than you think.

Jun 12, 2014

By Chad Berndtson

Cybersecurity, Events, News of the Week, Partners, Vertical

Palo Alto Networks News of the Week – May 16

Interested in the top Palo Alto Networks news from this past week? It’s all right here.

May 16, 2014

By Chad Berndtson

CSO Perspective, Cybersecurity, Threat Advisory/Analysis, Threat Prevention, Unit 42

8 Tips For Dealing With Heartbleed Right Now

This has been a fun week. We have not had a significant cyber event like this – something that affects just about everybody on the Internet -- since the Kaminsky DNS vulnerability...

Apr 12, 2014

By Rick Howard

Cybersecurity, Threat Advisories - Advisories, Threat Prevention

Real-world Impact of Heartbleed (CVE-2014-0160): The Web is Just the Start

We know how important SSL is to the modern Internet, and how the Heartbleed vulnerability (CVE-2014-0160: OpenSSL Private Key Disclosure Vulnerability...

Apr 10, 2014

By Scott Simkin

Announcement, Cybersecurity, Threat Advisories - Advisories, Threat Prevention

Palo Alto Networks Addresses Heartbleed Vulnerability (CVE-2014-0160)

A critical vulnerability in OpenSSL (CVE-2014-0160: OpenSSL Private Key Disclosure Vulnerability) was recently disclosed, which affects servers runnin...

Apr 09, 2014

By Scott Simkin

Load more blogs