Palo Alto Networks Unit 42 | LinkedIn (original) (raw)
Computer and Network Security
SANTA CLARA, CA 76,262 followers
Unit 42 Threat Intelligence & Incident Response. Intelligence Driven. Response Ready.
About us
Palo Alto Networks Unit 42 brings together world-renowned threat researchers with an elite team of incident responders and security consultants to create an intelligence-driven, response-ready organization passionate about helping customers more proactively manage cyber risk. With a deeply rooted reputation for delivering world-class threat intelligence, Unit 42 provides industry-leading incident response and cyber risk management services to security leaders around the globe.
Industry
Computer and Network Security
Company size
5,001-10,000 employees
Headquarters
SANTA CLARA, CA
Type
Public Company
Founded
2005
Specialties
Incident Response, Risk Management, Operational Threat Intelligence, and Network Security
Locations
Employees at Palo Alto Networks Unit 42
Updates
- According to research published by Simone Margaritelli, a series of vulnerabilities in the Common Unix Printing System (CUPS) printers discovery mechanism (`cups-browsed`) and in other components of the CUPS system, can be chained together to allow a remote attacker to execute arbitrary code by installing a malicious printer (or hijack an existing one via mDNS) on the target host as the `lp` user when a print job is sent to it. These vulnerabilities have been assigned to CVE-2024-47076, CVE-2024-47177, CVE-2024-47175, and CVE-2024-47176. CUPS is an open source printing system developed by OpenPrinting for Linux and other Unix-like operating systems. An attacker can exploit this vulnerability if it can connect to the host via UDP port 631, which is by default bound to INADDR_ANY, in which case the attack can be entirely remote, or if it's on the same network of the target, by using mDNS advertisements. PANW Unit 42 is not aware of any active exploitation at this time. Current mitigation recommendations include: 1️⃣ Disable and remove the cups-browsed service if not needed 2️⃣ Update the CUPS package to non vulnerable versions (<=2.0.1) 3️⃣ If your system can’t be updated and you rely on this service, block all traffic to UDP port 631 Palo Alto Networks has published an informational advisory stating that, based on current information, Palo Alto Networks products and cloud services do not contain affected CUPS-related software packages and are not impacted by these issues. https://bit.ly/4eg8QDNAdditional details can be found on Simone Margaritelli’s site: https://bit.ly/4eC1jPf
- Palo Alto Networks Unit 42 reposted this
1,283,813 followers
2d Edited
When faster + cheaper isn't a good thing 🫣 While attackers scale their operations at a fraction of the cost, organizations are struggling to keep up. That’s why early detection and public awareness are more critical than ever. Wendi Whitmore, SVP of Palo Alto Networks Unit 42, joins CNBC to unpack the latest trends in cyberthreats and what it takes to stay ahead. Get even more actionable insights and real-world solutions from our Unit 42 team. https://bit.ly/4ekE8JI - As early as June 2024, we discovered domains for a #DNStunneling campaign we call "Capybara" that employs various data encodings like customized Base32. These domains resolve to 104.236.196[.]131 and have a name server at 167.71.250[.]194. More info at https://bit.ly/4edLaQm
- Our latest findings reveal the technical mechanisms and infrastructure used by North Korean threat group Sparkling Pisces (aka Kimsuky, Thallium) for widespread data theft. Uncovering new malware — a keylogger and backdoor — we look at the data exfiltration capabilities as well as the implications for regional security dynamics. https://bit.ly/3TE78DZ
- Palo Alto Networks Unit 42 reposted this
1,283,813 followers
4d Edited
Palo Alto Networks 🤝 Red CanaryJoining forces to redefine the world of cybersecurity by offering new managed security services for Cortex by Palo Alto Networks XSIAM. Announcing our latest strategic partnership that will combine our AI-powered platform with Red Canary’s actionable threat intelligence, so customers can: 🛡️Unleash the power of AI 🔒Streamline their security operations ⚡️Accelerate threat detection and response Ready to revolutionize your SOC? Get the details in our latest press release. https://bit.ly/3ZDlfNG - #Crypto related #scams often target trading platforms and wallets. We discovered an active #phishing campaign targeting crypto derivatives trading platform Deribit. Operational since March 2023, this campaign has a unique hosting #infra. More info at https://bit.ly/4gxN3Jn
- With the 2024 U.S. presidential election nearing, attackers are now creating #deepfake videos of presidential candidates to promote their own financial #scams. See the updated IoCs section in our article on deepfake scams across the web for details: https://bit.ly/3z4MmGk
- Sniper Dz distinguishes itself by offering its phishing services for free, compensating by harvesting and utilizing victim credentials. This phishing-as-a-service platform also exploits legitimate services and uses advanced obfuscation techniques to avoid detection. This abuse makes it imperative for CISOs to implement layered security strategies and educate users on recognizing sophisticated phishing attempts. Read now: https://bit.ly/4efysRh
- 🔒 Join our team as the Senior Manager of Cyber Crime Research for Unit 42! In this role, you will support the Incident Response and Security Product Teams, lead development projects, leverage unique data holdings, collaborate with external engagement teams, manage and mentor a global team, and foster cross-organizational collaboration. If you're a dedicated and experienced cybersecurity professional looking for growth opportunities, apply today! https://bit.ly/4gyEDBr #CyberSecurityJobs #CyberSecurityCareers #CybercrimeCareers #Hiring #Unit42
Join now to see what you are missing
Similar pages
Browse jobs
- Cyber Security Specialist jobs 31,368 open jobs
- Manager jobs 2,003,890 open jobs
- Director jobs 1,374,979 open jobs
- Director of Security jobs 14,594 open jobs
- Analyst jobs 760,055 open jobs
- Intern jobs 48,214 open jobs
- Engineer jobs 608,159 open jobs
- Project Specialist jobs 106,299 open jobs
- Operational Specialist jobs 79,719 open jobs
- Project Manager jobs 312,603 open jobs
- Intelligence Specialist jobs 7,238 open jobs
- Chief Technical Officer jobs 3,815 open jobs
- Seller jobs 22,193 open jobs
- Network Solutions Architect jobs 14,820 open jobs
- Investigator jobs 21,047 open jobs
- Creative Director jobs 28,248 open jobs
- Chief Information Security Officer jobs 2,692 open jobs
- Information Technology Technician jobs 10,864 open jobs
- Information Security Consultant jobs 7,570 open jobs
- Network Security Engineer jobs 41,535 open jobs