Over 2,000 Palo Alto Networks Devices Compromised

Over 2,000 Palo Alto Networks devices compromised due to security flaws. A recent report indicates that approximately 2,000 devices from Palo Alto Networks have been compromised as a result of newly disclosed vulnerabilities, CVE-2024-0012 and CVE-2024-9474, which involve authentication bypass and privilege escalation. The majority of infections have been reported in the U.S. and India, with significant numbers also in Thailand and Mexico. Palo Alto Networks is actively tracking these exploits, dubbed Operation Lunar Peek, which are being used to execute arbitrary code and deploy malware on affected firewalls. The company warns that cyber attacks exploiting these vulnerabilities are expected to increase, urging users to apply the latest security fixes and restrict access to management interfaces to trusted internal IP addresses.