> TritonInfoSec News
Home / May 31, 2026 / Story
0
#1 BleepingComputer general May 30, 2026 at 18:02 UTC

Palo Alto GlobalProtect VPN auth bypass flaw now exploited in attacks

By Lawrence Abrams

AI Summary

Palo Alto Networks confirmed active exploitation of CVE-2026-0257, an authentication bypass flaw in PAN-OS GlobalProtect VPN, which carries a CVSS score of 7.8. Attackers are leveraging the vulnerability to establish unauthorized VPN connections and attempt to breach corporate networks. Security teams running PAN-OS or Prisma Access should treat this as urgent and apply mitigations immediately.

Read full article → https://www.bleepingcomputer.com/news/security/pal…

Relevance score: 88.0/100

# More from May 31

  1. 2
    New CIFSwitch Linux flaw gives root on multiple distributions BleepingComputer
  2. 3
    PAN-OS GlobalProtect Authentication Bypass (CVE-2026-0257) Under Active Exploitation The Hacker News
  3. 4
    Charter Communications Data Breach Could Impact Nearly 5 Million SecurityWeek
  4. 5
    Botnet of more than 17 million devices dismantled Ars Technica Security
  5. 6
    ChatGPT share links abused to host fake outage pages to deliver malware BleepingComputer
  6. 7
    ESET APT Activity Report Q4 2025–Q1 2026 WeLiveSecurity (ESET)
  7. 8
    Kimsuky Deploys HTTPSpy, Expands Arsenal with HelloDoor and VS Code Tunnels The Hacker News
  8. 9
    Chrome 148 Update Patches 151 Vulnerabilities SecurityWeek
  9. 10
    California Sues 23andMe, Alleging It Failed to Protect User Data in 2023 Breach SecurityWeek