Palo Alto Networks Warns of Active Exploitation of PAN-OS Zero-Day by State-Sponsored Groups

Palo Alto Networks has issued an alert regarding a critical zero-day vulnerability in its PAN-OS software, which is reportedly being exploited by suspected state-sponsored attackers. The flaw enables unauthenticated remote code execution on specific firewall models through the User-ID Authentication Portal. Observed attack methods include deploying tunneling tools and deleting logs to conceal malicious activity.