About 10,000 enterprise servers running Palo Alto Networks’ GlobalProtect VPN are vulnerable to a just-patched buffer overflow bug with a severity rating of 9.8 out of a possible 10.

Palo Alto Networks Globalprotect app is used to establish VPN connections. A vulnerability allows attackers to inject malicious code and install it on vulnerable computers with elevated privileges.

Surge in Scans on PAN GlobalProtect VPNs Hints at Attacks Over the past few weeks, bad actors from different regions have been scanning devices with the VPN for potential vulnerabilities.

Aaron Portnoy, principal scientist at Randori, explained to ZDNet that in October 2020, his team was tasked with researching vulnerabilities with the GlobalProtect Portal VPN.

The GlobalProtect VPN was not ‘the source of the vulnerability or impacted’ in the ransomware attack against distribution giant Ingram Micro, Palo Alto Networks says.

Palo Alto Networks has published an advisory about its Palo Alto GlobalProtect SSL VPN solution which is used by many organizations. The advisory was a response to research carried out by Orange ...

On 3 July 2025, global IT distributor Ingram Micro suffered a ransomware attack that disrupted core systems and customer platforms across Europe, North America, and Asia. The SafePay group claimed ...