> TritonInfoSec News
Home / May 31, 2026 / Story
0
#3 The Hacker News general May 30, 2026 at 06:41 UTC

PAN-OS GlobalProtect Authentication Bypass (CVE-2026-0257) Under Active Exploitation

By [email protected] (The Hacker News)

AI Summary

CVE-2026-0257 (CVSS 7.8), an authentication bypass in Palo Alto Networks PAN-OS and Prisma Access affecting the GlobalProtect VPN component, is now under active in-the-wild exploitation. The flaw allows unauthenticated attackers to set up rogue VPN connections, giving them a foothold into enterprise networks. This story provides deeper technical context alongside Palo Alto's official warning.

Read full article → https://thehackernews.com/2026/05/pan-os-globalpro…

Relevance score: 84.0/100

# More from May 31

  1. 1
    Palo Alto GlobalProtect VPN auth bypass flaw now exploited in attacks BleepingComputer
  2. 2
    New CIFSwitch Linux flaw gives root on multiple distributions BleepingComputer
  3. 4
    Charter Communications Data Breach Could Impact Nearly 5 Million SecurityWeek
  4. 5
    Botnet of more than 17 million devices dismantled Ars Technica Security
  5. 6
    ChatGPT share links abused to host fake outage pages to deliver malware BleepingComputer
  6. 7
    ESET APT Activity Report Q4 2025–Q1 2026 WeLiveSecurity (ESET)
  7. 8
    Kimsuky Deploys HTTPSpy, Expands Arsenal with HelloDoor and VS Code Tunnels The Hacker News
  8. 9
    Chrome 148 Update Patches 151 Vulnerabilities SecurityWeek
  9. 10
    California Sues 23andMe, Alleging It Failed to Protect User Data in 2023 Breach SecurityWeek