159
Palo Alto Networks confirms mystery zero day now exploited: No patch, no CVE
(www.thestack.technology)
This is a most excellent place for technology news and articles.
https://www.paloaltonetworks.com/ → Leader in Cybersecurity Protection & Software for the Modern Enterprises - Palo Alto Networks
Thanks, I will avoid them.
They're spamming all web logs too with an advertisement for their services in the user agent. I decided to ban them from all my websites because the logs took up too much space.
Yeah fuck them.
lmao that's not an ad, dude.
They're saying who they are, what they do, and are linking to their website and sometimes sends hundreds of requests in a minute. It might not say "For only €49.99 you can get your very own thing!”, but that does not mean they aren't throwing their name up in every website owner's arse whether they like it or not.
It's so you know who is scanning you.
That could have been done by just having a single entry called GoogleBot or BingBot, not an entire sentence explaining their product offering let alone hundreds of times a minute.
"urging customers to pull their management interfaces off the public internet or restrict them to known IP addresses."
Sounds more like pebkac and less of a big deal. Management interface should be in your management VLAN, plus I don't know another vendor that can touch them in terms of security features.