{"id":187368,"date":"2024-04-14T10:44:31","date_gmt":"2024-04-14T15:44:31","guid":{"rendered":"https:\/\/lifeboat.com\/blog\/2024\/04\/hackers-deploy-python-backdoor-in-palo-alto-zero-day-attack"},"modified":"2024-04-14T10:44:31","modified_gmt":"2024-04-14T15:44:31","slug":"hackers-deploy-python-backdoor-in-palo-alto-zero-day-attack","status":"publish","type":"post","link":"https:\/\/lifeboat.com\/blog\/2024\/04\/hackers-deploy-python-backdoor-in-palo-alto-zero-day-attack","title":{"rendered":"Hackers Deploy Python Backdoor in Palo Alto Zero-Day Attack"},"content":{"rendered":"<p style=\"padding-right: 20px\"><a class=\"aligncenter blog-photo\" href=\"https:\/\/lifeboat.com\/blog.images\/hackers-deploy-python-backdoor-in-palo-alto-zero-day-attack2.jpg\"><\/a><\/p>\n<p>Threat actors have been exploiting the newly disclosed zero-day flaw in Palo Alto Networks PAN-OS software dating back to March 26, 2024, nearly three weeks before it came to light yesterday.<\/p>\n<p>The network security company\u2019s Unit 42 division is <a href=\"https:\/\/unit42.paloaltonetworks.com\/cve-2024-3400\/\" rel=\"noopener\" target=\"_blank\">tracking<\/a> the activity under the name <strong>Operation MidnightEclipse<\/strong>, attributing it as the work of a single threat actor of unknown provenance.<\/p>\n<p>The security vulnerability, tracked as <a href=\"https:\/\/thehackernews.com\/2024\/04\/zero-day-alert-critical-palo-alto.html\" rel=\"noopener\" target=\"_blank\">CVE-2024\u20133400<\/a> (CVSS score: 10.0), is a command injection flaw that enables unauthenticated attackers to execute arbitrary code with root privileges on the firewall.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Threat actors have been exploiting the newly disclosed zero-day flaw in Palo Alto Networks PAN-OS software dating back to March 26, 2024, nearly three weeks before it came to light yesterday. The network security company\u2019s Unit 42 division is tracking the activity under the name Operation MidnightEclipse, attributing it as the work of a single [\u2026]<\/p>\n","protected":false},"author":396,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1492],"tags":[],"class_list":["post-187368","post","type-post","status-publish","format-standard","hentry","category-security"],"_links":{"self":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/187368","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/users\/396"}],"replies":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/comments?post=187368"}],"version-history":[{"count":0,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/187368\/revisions"}],"wp:attachment":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/media?parent=187368"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/categories?post=187368"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/tags?post=187368"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}