Palo Alto Networks disclosed a critical authentication bypass vulnerability (CVE-2025-010) in PAN-OS software, rated 8.8. It allows unauthenticated attackers to exploit the management web interface, potentially compromising system integrity and confidentiality. Affected versions include PAN-OS 11.2, 11.1, 10.2, and 10.1. Organizations are advised to restrict access and upgrade systems promptly; no current exploitation is known.
Hackers Using Pyramid Pentesting Tool For Stealthy C2 Communications
Hackers are using the open-source Pyramid pentesting framework, launched in 2023, for stealthy command-and-control operations. Its lightweight Python-based HTTP/S server enables evasion of detection tools,
